pulumi-azure-native 2.34.0__py3-none-any.whl → 2.34.1a1712062553__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of pulumi-azure-native might be problematic. Click here for more details.
- pulumi_azure_native/__init__.py +60 -0
- pulumi_azure_native/azurestackhci/__init__.py +3 -0
- pulumi_azure_native/azurestackhci/arc_setting.py +3 -3
- pulumi_azure_native/azurestackhci/cluster.py +3 -3
- pulumi_azure_native/azurestackhci/deployment_setting.py +3 -3
- pulumi_azure_native/azurestackhci/edge_device.py +3 -3
- pulumi_azure_native/azurestackhci/extension.py +3 -3
- pulumi_azure_native/azurestackhci/get_arc_setting.py +2 -2
- pulumi_azure_native/azurestackhci/get_cluster.py +2 -2
- pulumi_azure_native/azurestackhci/get_deployment_setting.py +2 -2
- pulumi_azure_native/azurestackhci/get_edge_device.py +2 -2
- pulumi_azure_native/azurestackhci/get_extension.py +2 -2
- pulumi_azure_native/azurestackhci/get_security_setting.py +2 -2
- pulumi_azure_native/azurestackhci/get_update.py +2 -2
- pulumi_azure_native/azurestackhci/get_update_run.py +2 -2
- pulumi_azure_native/azurestackhci/get_update_summary.py +2 -2
- pulumi_azure_native/azurestackhci/security_setting.py +3 -3
- pulumi_azure_native/azurestackhci/update.py +3 -3
- pulumi_azure_native/azurestackhci/update_run.py +3 -3
- pulumi_azure_native/azurestackhci/update_summary.py +3 -3
- pulumi_azure_native/azurestackhci/v20210901preview/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20220101/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20220901/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20221215preview/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20230301/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20230601/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/deployment_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/edge_device.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20230801preview/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/deployment_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/edge_device.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/security_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20231101preview/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/arc_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/cluster.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/deployment_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/edge_device.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/extension.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/security_setting.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/update.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/update_run.py +1 -1
- pulumi_azure_native/azurestackhci/v20240101/update_summary.py +1 -1
- pulumi_azure_native/azurestackhci/v20240215preview/__init__.py +28 -0
- pulumi_azure_native/azurestackhci/v20240215preview/_enums.py +181 -0
- pulumi_azure_native/azurestackhci/v20240215preview/_inputs.py +2355 -0
- pulumi_azure_native/azurestackhci/v20240215preview/arc_setting.py +401 -0
- pulumi_azure_native/azurestackhci/v20240215preview/cluster.py +646 -0
- pulumi_azure_native/azurestackhci/v20240215preview/deployment_setting.py +297 -0
- pulumi_azure_native/azurestackhci/v20240215preview/extension.py +468 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_arc_setting.py +253 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_cluster.py +469 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_deployment_setting.py +188 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_extension.py +271 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_hci_edge_device.py +145 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_security_setting.py +162 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_update.py +357 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_update_run.py +297 -0
- pulumi_azure_native/azurestackhci/v20240215preview/get_update_summary.py +235 -0
- pulumi_azure_native/azurestackhci/v20240215preview/hci_edge_device.py +228 -0
- pulumi_azure_native/azurestackhci/v20240215preview/outputs.py +5337 -0
- pulumi_azure_native/azurestackhci/v20240215preview/security_setting.py +239 -0
- pulumi_azure_native/azurestackhci/v20240215preview/update.py +690 -0
- pulumi_azure_native/azurestackhci/v20240215preview/update_run.py +585 -0
- pulumi_azure_native/azurestackhci/v20240215preview/update_summary.py +408 -0
- pulumi_azure_native/devcenter/__init__.py +7 -0
- pulumi_azure_native/devcenter/_enums.py +9 -0
- pulumi_azure_native/devcenter/attached_network_by_dev_center.py +3 -3
- pulumi_azure_native/devcenter/catalog.py +3 -3
- pulumi_azure_native/devcenter/dev_box_definition.py +3 -3
- pulumi_azure_native/devcenter/dev_center.py +3 -3
- pulumi_azure_native/devcenter/environment_type.py +3 -3
- pulumi_azure_native/devcenter/gallery.py +3 -3
- pulumi_azure_native/devcenter/get_attached_network_by_dev_center.py +2 -2
- pulumi_azure_native/devcenter/get_catalog.py +2 -2
- pulumi_azure_native/devcenter/get_catalog_sync_error_details.py +2 -2
- pulumi_azure_native/devcenter/get_dev_box_definition.py +2 -2
- pulumi_azure_native/devcenter/get_dev_center.py +2 -2
- pulumi_azure_native/devcenter/get_environment_definition_error_details.py +2 -2
- pulumi_azure_native/devcenter/get_environment_type.py +2 -2
- pulumi_azure_native/devcenter/get_gallery.py +2 -2
- pulumi_azure_native/devcenter/get_network_connection.py +2 -2
- pulumi_azure_native/devcenter/get_pool.py +2 -2
- pulumi_azure_native/devcenter/get_project.py +2 -2
- pulumi_azure_native/devcenter/get_project_catalog.py +255 -0
- pulumi_azure_native/devcenter/get_project_catalog_environment_definition_error_details.py +91 -0
- pulumi_azure_native/devcenter/get_project_catalog_sync_error_details.py +112 -0
- pulumi_azure_native/devcenter/get_project_environment_type.py +2 -2
- pulumi_azure_native/devcenter/get_schedule.py +2 -2
- pulumi_azure_native/devcenter/network_connection.py +3 -3
- pulumi_azure_native/devcenter/outputs.py +111 -0
- pulumi_azure_native/devcenter/pool.py +3 -3
- pulumi_azure_native/devcenter/project.py +3 -3
- pulumi_azure_native/devcenter/project_catalog.py +365 -0
- pulumi_azure_native/devcenter/project_environment_type.py +3 -3
- pulumi_azure_native/devcenter/schedule.py +3 -3
- pulumi_azure_native/devcenter/v20221111preview/dev_box_definition.py +1 -1
- pulumi_azure_native/devcenter/v20230401/attached_network_by_dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20230401/catalog.py +1 -1
- pulumi_azure_native/devcenter/v20230401/dev_box_definition.py +1 -1
- pulumi_azure_native/devcenter/v20230401/dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20230401/environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20230401/gallery.py +1 -1
- pulumi_azure_native/devcenter/v20230401/network_connection.py +1 -1
- pulumi_azure_native/devcenter/v20230401/pool.py +1 -1
- pulumi_azure_native/devcenter/v20230401/project.py +1 -1
- pulumi_azure_native/devcenter/v20230401/project_environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20230401/schedule.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/attached_network_by_dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/catalog.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/dev_box_definition.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/gallery.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/network_connection.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/pool.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/project.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/project_environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20230801preview/schedule.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/attached_network_by_dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/catalog.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/dev_box_definition.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/dev_center.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/gallery.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/network_connection.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/pool.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/project.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/project_environment_type.py +1 -1
- pulumi_azure_native/devcenter/v20231001preview/schedule.py +1 -1
- pulumi_azure_native/devcenter/v20240201/__init__.py +38 -0
- pulumi_azure_native/devcenter/v20240201/_enums.py +162 -0
- pulumi_azure_native/devcenter/v20240201/_inputs.py +504 -0
- pulumi_azure_native/devcenter/v20240201/attached_network_by_dev_center.py +255 -0
- pulumi_azure_native/devcenter/v20240201/catalog.py +363 -0
- pulumi_azure_native/devcenter/v20240201/dev_box_definition.py +413 -0
- pulumi_azure_native/devcenter/v20240201/dev_center.py +360 -0
- pulumi_azure_native/devcenter/v20240201/environment_type.py +253 -0
- pulumi_azure_native/devcenter/v20240201/gallery.py +225 -0
- pulumi_azure_native/devcenter/v20240201/get_attached_network_by_dev_center.py +188 -0
- pulumi_azure_native/devcenter/v20240201/get_catalog.py +253 -0
- pulumi_azure_native/devcenter/v20240201/get_catalog_sync_error_details.py +110 -0
- pulumi_azure_native/devcenter/v20240201/get_dev_box_definition.py +266 -0
- pulumi_azure_native/devcenter/v20240201/get_dev_center.py +222 -0
- pulumi_azure_native/devcenter/v20240201/get_environment_definition_error_details.py +89 -0
- pulumi_azure_native/devcenter/v20240201/get_environment_type.py +162 -0
- pulumi_azure_native/devcenter/v20240201/get_gallery.py +149 -0
- pulumi_azure_native/devcenter/v20240201/get_network_connection.py +261 -0
- pulumi_azure_native/devcenter/v20240201/get_pool.py +318 -0
- pulumi_azure_native/devcenter/v20240201/get_project.py +248 -0
- pulumi_azure_native/devcenter/v20240201/get_project_catalog.py +253 -0
- pulumi_azure_native/devcenter/v20240201/get_project_catalog_environment_definition_error_details.py +89 -0
- pulumi_azure_native/devcenter/v20240201/get_project_catalog_sync_error_details.py +110 -0
- pulumi_azure_native/devcenter/v20240201/get_project_environment_type.py +253 -0
- pulumi_azure_native/devcenter/v20240201/get_schedule.py +224 -0
- pulumi_azure_native/devcenter/v20240201/network_connection.py +448 -0
- pulumi_azure_native/devcenter/v20240201/outputs.py +1138 -0
- pulumi_azure_native/devcenter/v20240201/pool.py +550 -0
- pulumi_azure_native/devcenter/v20240201/project.py +418 -0
- pulumi_azure_native/devcenter/v20240201/project_catalog.py +363 -0
- pulumi_azure_native/devcenter/v20240201/project_environment_type.py +439 -0
- pulumi_azure_native/devcenter/v20240201/schedule.py +434 -0
- pulumi_azure_native/devopsinfrastructure/__init__.py +3 -0
- pulumi_azure_native/devopsinfrastructure/get_pool.py +2 -2
- pulumi_azure_native/devopsinfrastructure/pool.py +3 -3
- pulumi_azure_native/devopsinfrastructure/v20231030preview/pool.py +1 -1
- pulumi_azure_native/devopsinfrastructure/v20231213preview/pool.py +1 -1
- pulumi_azure_native/devopsinfrastructure/v20240326preview/__init__.py +12 -0
- pulumi_azure_native/devopsinfrastructure/v20240326preview/_enums.py +153 -0
- pulumi_azure_native/devopsinfrastructure/v20240326preview/_inputs.py +841 -0
- pulumi_azure_native/devopsinfrastructure/v20240326preview/get_pool.py +235 -0
- pulumi_azure_native/devopsinfrastructure/v20240326preview/outputs.py +1115 -0
- pulumi_azure_native/devopsinfrastructure/v20240326preview/pool.py +432 -0
- pulumi_azure_native/kubernetesconfiguration/__init__.py +3 -0
- pulumi_azure_native/kubernetesconfiguration/flux_configuration.py +3 -3
- pulumi_azure_native/kubernetesconfiguration/get_flux_configuration.py +2 -2
- pulumi_azure_native/kubernetesconfiguration/v20211101preview/flux_configuration.py +1 -1
- pulumi_azure_native/kubernetesconfiguration/v20220101preview/flux_configuration.py +1 -1
- pulumi_azure_native/kubernetesconfiguration/v20230501/flux_configuration.py +1 -1
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/__init__.py +12 -0
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/_enums.py +37 -0
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/_inputs.py +1356 -0
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/flux_configuration.py +669 -0
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/get_flux_configuration.py +393 -0
- pulumi_azure_native/kubernetesconfiguration/v20240401preview/outputs.py +1832 -0
- pulumi_azure_native/security/__init__.py +3 -0
- pulumi_azure_native/security/get_security_connector.py +2 -2
- pulumi_azure_native/security/security_connector.py +3 -3
- pulumi_azure_native/security/v20210701preview/security_connector.py +1 -1
- pulumi_azure_native/security/v20230301preview/security_connector.py +1 -1
- pulumi_azure_native/security/v20231001preview/security_connector.py +1 -1
- pulumi_azure_native/security/v20240301preview/__init__.py +12 -0
- pulumi_azure_native/security/v20240301preview/_enums.py +88 -0
- pulumi_azure_native/security/v20240301preview/_inputs.py +3620 -0
- pulumi_azure_native/security/v20240301preview/get_security_connector.py +235 -0
- pulumi_azure_native/security/v20240301preview/outputs.py +4544 -0
- pulumi_azure_native/security/v20240301preview/security_connector.py +389 -0
- {pulumi_azure_native-2.34.0.dist-info → pulumi_azure_native-2.34.1a1712062553.dist-info}/METADATA +1 -1
- {pulumi_azure_native-2.34.0.dist-info → pulumi_azure_native-2.34.1a1712062553.dist-info}/RECORD +231 -155
- {pulumi_azure_native-2.34.0.dist-info → pulumi_azure_native-2.34.1a1712062553.dist-info}/WHEEL +0 -0
- {pulumi_azure_native-2.34.0.dist-info → pulumi_azure_native-2.34.1a1712062553.dist-info}/top_level.txt +0 -0
|
@@ -0,0 +1,3620 @@
|
|
|
1
|
+
# coding=utf-8
|
|
2
|
+
# *** WARNING: this file was generated by pulumi-language-python. ***
|
|
3
|
+
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
|
|
5
|
+
import copy
|
|
6
|
+
import warnings
|
|
7
|
+
import pulumi
|
|
8
|
+
import pulumi.runtime
|
|
9
|
+
from typing import Any, Mapping, Optional, Sequence, Union, overload
|
|
10
|
+
from ... import _utilities
|
|
11
|
+
from ._enums import *
|
|
12
|
+
|
|
13
|
+
__all__ = [
|
|
14
|
+
'ArcAutoProvisioningConfigurationArgs',
|
|
15
|
+
'AwsEnvironmentDataArgs',
|
|
16
|
+
'AwsOrganizationalDataMasterArgs',
|
|
17
|
+
'AwsOrganizationalDataMemberArgs',
|
|
18
|
+
'AzureDevOpsScopeEnvironmentDataArgs',
|
|
19
|
+
'CspmMonitorAwsOfferingNativeCloudConnectionArgs',
|
|
20
|
+
'CspmMonitorAwsOfferingArgs',
|
|
21
|
+
'CspmMonitorAzureDevOpsOfferingArgs',
|
|
22
|
+
'CspmMonitorGcpOfferingNativeCloudConnectionArgs',
|
|
23
|
+
'CspmMonitorGcpOfferingArgs',
|
|
24
|
+
'CspmMonitorGitLabOfferingArgs',
|
|
25
|
+
'CspmMonitorGithubOfferingArgs',
|
|
26
|
+
'DefenderCspmAwsOfferingCiemDiscoveryArgs',
|
|
27
|
+
'DefenderCspmAwsOfferingCiemOidcArgs',
|
|
28
|
+
'DefenderCspmAwsOfferingCiemArgs',
|
|
29
|
+
'DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs',
|
|
30
|
+
'DefenderCspmAwsOfferingDatabasesDspmArgs',
|
|
31
|
+
'DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs',
|
|
32
|
+
'DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs',
|
|
33
|
+
'DefenderCspmAwsOfferingVmScannersArgs',
|
|
34
|
+
'DefenderCspmAwsOfferingArgs',
|
|
35
|
+
'DefenderCspmGcpOfferingCiemDiscoveryArgs',
|
|
36
|
+
'DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs',
|
|
37
|
+
'DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs',
|
|
38
|
+
'DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs',
|
|
39
|
+
'DefenderCspmGcpOfferingVmScannersArgs',
|
|
40
|
+
'DefenderCspmGcpOfferingArgs',
|
|
41
|
+
'DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs',
|
|
42
|
+
'DefenderFoDatabasesAwsOfferingDatabasesDspmArgs',
|
|
43
|
+
'DefenderFoDatabasesAwsOfferingRdsArgs',
|
|
44
|
+
'DefenderFoDatabasesAwsOfferingArgs',
|
|
45
|
+
'DefenderForContainersAwsOfferingCloudWatchToKinesisArgs',
|
|
46
|
+
'DefenderForContainersAwsOfferingKinesisToS3Args',
|
|
47
|
+
'DefenderForContainersAwsOfferingKubernetesDataCollectionArgs',
|
|
48
|
+
'DefenderForContainersAwsOfferingKubernetesServiceArgs',
|
|
49
|
+
'DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs',
|
|
50
|
+
'DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs',
|
|
51
|
+
'DefenderForContainersAwsOfferingVmScannersArgs',
|
|
52
|
+
'DefenderForContainersAwsOfferingArgs',
|
|
53
|
+
'DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs',
|
|
54
|
+
'DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs',
|
|
55
|
+
'DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs',
|
|
56
|
+
'DefenderForContainersGcpOfferingNativeCloudConnectionArgs',
|
|
57
|
+
'DefenderForContainersGcpOfferingVmScannersArgs',
|
|
58
|
+
'DefenderForContainersGcpOfferingArgs',
|
|
59
|
+
'DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs',
|
|
60
|
+
'DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs',
|
|
61
|
+
'DefenderForDatabasesGcpOfferingArgs',
|
|
62
|
+
'DefenderForServersAwsOfferingArcAutoProvisioningArgs',
|
|
63
|
+
'DefenderForServersAwsOfferingConfigurationArgs',
|
|
64
|
+
'DefenderForServersAwsOfferingDefenderForServersArgs',
|
|
65
|
+
'DefenderForServersAwsOfferingMdeAutoProvisioningArgs',
|
|
66
|
+
'DefenderForServersAwsOfferingSubPlanArgs',
|
|
67
|
+
'DefenderForServersAwsOfferingVaAutoProvisioningArgs',
|
|
68
|
+
'DefenderForServersAwsOfferingVmScannersArgs',
|
|
69
|
+
'DefenderForServersAwsOfferingArgs',
|
|
70
|
+
'DefenderForServersGcpOfferingArcAutoProvisioningArgs',
|
|
71
|
+
'DefenderForServersGcpOfferingConfigurationArgs',
|
|
72
|
+
'DefenderForServersGcpOfferingDefenderForServersArgs',
|
|
73
|
+
'DefenderForServersGcpOfferingMdeAutoProvisioningArgs',
|
|
74
|
+
'DefenderForServersGcpOfferingSubPlanArgs',
|
|
75
|
+
'DefenderForServersGcpOfferingVaAutoProvisioningArgs',
|
|
76
|
+
'DefenderForServersGcpOfferingVmScannersArgs',
|
|
77
|
+
'DefenderForServersGcpOfferingArgs',
|
|
78
|
+
'GcpOrganizationalDataMemberArgs',
|
|
79
|
+
'GcpOrganizationalDataOrganizationArgs',
|
|
80
|
+
'GcpProjectDetailsArgs',
|
|
81
|
+
'GcpProjectEnvironmentDataArgs',
|
|
82
|
+
'GithubScopeEnvironmentDataArgs',
|
|
83
|
+
'GitlabScopeEnvironmentDataArgs',
|
|
84
|
+
'VmScannersBaseConfigurationArgs',
|
|
85
|
+
]
|
|
86
|
+
|
|
87
|
+
@pulumi.input_type
|
|
88
|
+
class ArcAutoProvisioningConfigurationArgs:
|
|
89
|
+
def __init__(__self__, *,
|
|
90
|
+
private_link_scope: Optional[pulumi.Input[str]] = None,
|
|
91
|
+
proxy: Optional[pulumi.Input[str]] = None):
|
|
92
|
+
"""
|
|
93
|
+
Configuration for servers Arc auto provisioning for a given environment
|
|
94
|
+
:param pulumi.Input[str] private_link_scope: Optional Arc private link scope resource id to link the Arc agent
|
|
95
|
+
:param pulumi.Input[str] proxy: Optional HTTP proxy endpoint to use for the Arc agent
|
|
96
|
+
"""
|
|
97
|
+
if private_link_scope is not None:
|
|
98
|
+
pulumi.set(__self__, "private_link_scope", private_link_scope)
|
|
99
|
+
if proxy is not None:
|
|
100
|
+
pulumi.set(__self__, "proxy", proxy)
|
|
101
|
+
|
|
102
|
+
@property
|
|
103
|
+
@pulumi.getter(name="privateLinkScope")
|
|
104
|
+
def private_link_scope(self) -> Optional[pulumi.Input[str]]:
|
|
105
|
+
"""
|
|
106
|
+
Optional Arc private link scope resource id to link the Arc agent
|
|
107
|
+
"""
|
|
108
|
+
return pulumi.get(self, "private_link_scope")
|
|
109
|
+
|
|
110
|
+
@private_link_scope.setter
|
|
111
|
+
def private_link_scope(self, value: Optional[pulumi.Input[str]]):
|
|
112
|
+
pulumi.set(self, "private_link_scope", value)
|
|
113
|
+
|
|
114
|
+
@property
|
|
115
|
+
@pulumi.getter
|
|
116
|
+
def proxy(self) -> Optional[pulumi.Input[str]]:
|
|
117
|
+
"""
|
|
118
|
+
Optional HTTP proxy endpoint to use for the Arc agent
|
|
119
|
+
"""
|
|
120
|
+
return pulumi.get(self, "proxy")
|
|
121
|
+
|
|
122
|
+
@proxy.setter
|
|
123
|
+
def proxy(self, value: Optional[pulumi.Input[str]]):
|
|
124
|
+
pulumi.set(self, "proxy", value)
|
|
125
|
+
|
|
126
|
+
|
|
127
|
+
@pulumi.input_type
|
|
128
|
+
class AwsEnvironmentDataArgs:
|
|
129
|
+
def __init__(__self__, *,
|
|
130
|
+
environment_type: pulumi.Input[str],
|
|
131
|
+
organizational_data: Optional[pulumi.Input[Union['AwsOrganizationalDataMasterArgs', 'AwsOrganizationalDataMemberArgs']]] = None,
|
|
132
|
+
regions: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
133
|
+
scan_interval: Optional[pulumi.Input[float]] = None):
|
|
134
|
+
"""
|
|
135
|
+
The AWS connector environment data
|
|
136
|
+
:param pulumi.Input[str] environment_type: The type of the environment data.
|
|
137
|
+
Expected value is 'AwsAccount'.
|
|
138
|
+
:param pulumi.Input[Union['AwsOrganizationalDataMasterArgs', 'AwsOrganizationalDataMemberArgs']] organizational_data: The AWS account's organizational data
|
|
139
|
+
:param pulumi.Input[Sequence[pulumi.Input[str]]] regions: list of regions to scan
|
|
140
|
+
:param pulumi.Input[float] scan_interval: Scan interval in hours (value should be between 1-hour to 24-hours)
|
|
141
|
+
"""
|
|
142
|
+
pulumi.set(__self__, "environment_type", 'AwsAccount')
|
|
143
|
+
if organizational_data is not None:
|
|
144
|
+
pulumi.set(__self__, "organizational_data", organizational_data)
|
|
145
|
+
if regions is not None:
|
|
146
|
+
pulumi.set(__self__, "regions", regions)
|
|
147
|
+
if scan_interval is not None:
|
|
148
|
+
pulumi.set(__self__, "scan_interval", scan_interval)
|
|
149
|
+
|
|
150
|
+
@property
|
|
151
|
+
@pulumi.getter(name="environmentType")
|
|
152
|
+
def environment_type(self) -> pulumi.Input[str]:
|
|
153
|
+
"""
|
|
154
|
+
The type of the environment data.
|
|
155
|
+
Expected value is 'AwsAccount'.
|
|
156
|
+
"""
|
|
157
|
+
return pulumi.get(self, "environment_type")
|
|
158
|
+
|
|
159
|
+
@environment_type.setter
|
|
160
|
+
def environment_type(self, value: pulumi.Input[str]):
|
|
161
|
+
pulumi.set(self, "environment_type", value)
|
|
162
|
+
|
|
163
|
+
@property
|
|
164
|
+
@pulumi.getter(name="organizationalData")
|
|
165
|
+
def organizational_data(self) -> Optional[pulumi.Input[Union['AwsOrganizationalDataMasterArgs', 'AwsOrganizationalDataMemberArgs']]]:
|
|
166
|
+
"""
|
|
167
|
+
The AWS account's organizational data
|
|
168
|
+
"""
|
|
169
|
+
return pulumi.get(self, "organizational_data")
|
|
170
|
+
|
|
171
|
+
@organizational_data.setter
|
|
172
|
+
def organizational_data(self, value: Optional[pulumi.Input[Union['AwsOrganizationalDataMasterArgs', 'AwsOrganizationalDataMemberArgs']]]):
|
|
173
|
+
pulumi.set(self, "organizational_data", value)
|
|
174
|
+
|
|
175
|
+
@property
|
|
176
|
+
@pulumi.getter
|
|
177
|
+
def regions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
178
|
+
"""
|
|
179
|
+
list of regions to scan
|
|
180
|
+
"""
|
|
181
|
+
return pulumi.get(self, "regions")
|
|
182
|
+
|
|
183
|
+
@regions.setter
|
|
184
|
+
def regions(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
185
|
+
pulumi.set(self, "regions", value)
|
|
186
|
+
|
|
187
|
+
@property
|
|
188
|
+
@pulumi.getter(name="scanInterval")
|
|
189
|
+
def scan_interval(self) -> Optional[pulumi.Input[float]]:
|
|
190
|
+
"""
|
|
191
|
+
Scan interval in hours (value should be between 1-hour to 24-hours)
|
|
192
|
+
"""
|
|
193
|
+
return pulumi.get(self, "scan_interval")
|
|
194
|
+
|
|
195
|
+
@scan_interval.setter
|
|
196
|
+
def scan_interval(self, value: Optional[pulumi.Input[float]]):
|
|
197
|
+
pulumi.set(self, "scan_interval", value)
|
|
198
|
+
|
|
199
|
+
|
|
200
|
+
@pulumi.input_type
|
|
201
|
+
class AwsOrganizationalDataMasterArgs:
|
|
202
|
+
def __init__(__self__, *,
|
|
203
|
+
organization_membership_type: pulumi.Input[str],
|
|
204
|
+
excluded_account_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
205
|
+
stackset_name: Optional[pulumi.Input[str]] = None):
|
|
206
|
+
"""
|
|
207
|
+
The AWS organization data for the master account
|
|
208
|
+
:param pulumi.Input[str] organization_membership_type: The multi cloud account's membership type in the organization
|
|
209
|
+
Expected value is 'Organization'.
|
|
210
|
+
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_account_ids: If the multi cloud account is of membership type organization, list of accounts excluded from offering
|
|
211
|
+
:param pulumi.Input[str] stackset_name: If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset
|
|
212
|
+
"""
|
|
213
|
+
pulumi.set(__self__, "organization_membership_type", 'Organization')
|
|
214
|
+
if excluded_account_ids is not None:
|
|
215
|
+
pulumi.set(__self__, "excluded_account_ids", excluded_account_ids)
|
|
216
|
+
if stackset_name is not None:
|
|
217
|
+
pulumi.set(__self__, "stackset_name", stackset_name)
|
|
218
|
+
|
|
219
|
+
@property
|
|
220
|
+
@pulumi.getter(name="organizationMembershipType")
|
|
221
|
+
def organization_membership_type(self) -> pulumi.Input[str]:
|
|
222
|
+
"""
|
|
223
|
+
The multi cloud account's membership type in the organization
|
|
224
|
+
Expected value is 'Organization'.
|
|
225
|
+
"""
|
|
226
|
+
return pulumi.get(self, "organization_membership_type")
|
|
227
|
+
|
|
228
|
+
@organization_membership_type.setter
|
|
229
|
+
def organization_membership_type(self, value: pulumi.Input[str]):
|
|
230
|
+
pulumi.set(self, "organization_membership_type", value)
|
|
231
|
+
|
|
232
|
+
@property
|
|
233
|
+
@pulumi.getter(name="excludedAccountIds")
|
|
234
|
+
def excluded_account_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
235
|
+
"""
|
|
236
|
+
If the multi cloud account is of membership type organization, list of accounts excluded from offering
|
|
237
|
+
"""
|
|
238
|
+
return pulumi.get(self, "excluded_account_ids")
|
|
239
|
+
|
|
240
|
+
@excluded_account_ids.setter
|
|
241
|
+
def excluded_account_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
242
|
+
pulumi.set(self, "excluded_account_ids", value)
|
|
243
|
+
|
|
244
|
+
@property
|
|
245
|
+
@pulumi.getter(name="stacksetName")
|
|
246
|
+
def stackset_name(self) -> Optional[pulumi.Input[str]]:
|
|
247
|
+
"""
|
|
248
|
+
If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset
|
|
249
|
+
"""
|
|
250
|
+
return pulumi.get(self, "stackset_name")
|
|
251
|
+
|
|
252
|
+
@stackset_name.setter
|
|
253
|
+
def stackset_name(self, value: Optional[pulumi.Input[str]]):
|
|
254
|
+
pulumi.set(self, "stackset_name", value)
|
|
255
|
+
|
|
256
|
+
|
|
257
|
+
@pulumi.input_type
|
|
258
|
+
class AwsOrganizationalDataMemberArgs:
|
|
259
|
+
def __init__(__self__, *,
|
|
260
|
+
organization_membership_type: pulumi.Input[str],
|
|
261
|
+
parent_hierarchy_id: Optional[pulumi.Input[str]] = None):
|
|
262
|
+
"""
|
|
263
|
+
The AWS organization data for the member account
|
|
264
|
+
:param pulumi.Input[str] organization_membership_type: The multi cloud account's membership type in the organization
|
|
265
|
+
Expected value is 'Member'.
|
|
266
|
+
:param pulumi.Input[str] parent_hierarchy_id: If the multi cloud account is not of membership type organization, this will be the ID of the account's parent
|
|
267
|
+
"""
|
|
268
|
+
pulumi.set(__self__, "organization_membership_type", 'Member')
|
|
269
|
+
if parent_hierarchy_id is not None:
|
|
270
|
+
pulumi.set(__self__, "parent_hierarchy_id", parent_hierarchy_id)
|
|
271
|
+
|
|
272
|
+
@property
|
|
273
|
+
@pulumi.getter(name="organizationMembershipType")
|
|
274
|
+
def organization_membership_type(self) -> pulumi.Input[str]:
|
|
275
|
+
"""
|
|
276
|
+
The multi cloud account's membership type in the organization
|
|
277
|
+
Expected value is 'Member'.
|
|
278
|
+
"""
|
|
279
|
+
return pulumi.get(self, "organization_membership_type")
|
|
280
|
+
|
|
281
|
+
@organization_membership_type.setter
|
|
282
|
+
def organization_membership_type(self, value: pulumi.Input[str]):
|
|
283
|
+
pulumi.set(self, "organization_membership_type", value)
|
|
284
|
+
|
|
285
|
+
@property
|
|
286
|
+
@pulumi.getter(name="parentHierarchyId")
|
|
287
|
+
def parent_hierarchy_id(self) -> Optional[pulumi.Input[str]]:
|
|
288
|
+
"""
|
|
289
|
+
If the multi cloud account is not of membership type organization, this will be the ID of the account's parent
|
|
290
|
+
"""
|
|
291
|
+
return pulumi.get(self, "parent_hierarchy_id")
|
|
292
|
+
|
|
293
|
+
@parent_hierarchy_id.setter
|
|
294
|
+
def parent_hierarchy_id(self, value: Optional[pulumi.Input[str]]):
|
|
295
|
+
pulumi.set(self, "parent_hierarchy_id", value)
|
|
296
|
+
|
|
297
|
+
|
|
298
|
+
@pulumi.input_type
|
|
299
|
+
class AzureDevOpsScopeEnvironmentDataArgs:
|
|
300
|
+
def __init__(__self__, *,
|
|
301
|
+
environment_type: pulumi.Input[str]):
|
|
302
|
+
"""
|
|
303
|
+
The AzureDevOps scope connector's environment data
|
|
304
|
+
:param pulumi.Input[str] environment_type: The type of the environment data.
|
|
305
|
+
Expected value is 'AzureDevOpsScope'.
|
|
306
|
+
"""
|
|
307
|
+
pulumi.set(__self__, "environment_type", 'AzureDevOpsScope')
|
|
308
|
+
|
|
309
|
+
@property
|
|
310
|
+
@pulumi.getter(name="environmentType")
|
|
311
|
+
def environment_type(self) -> pulumi.Input[str]:
|
|
312
|
+
"""
|
|
313
|
+
The type of the environment data.
|
|
314
|
+
Expected value is 'AzureDevOpsScope'.
|
|
315
|
+
"""
|
|
316
|
+
return pulumi.get(self, "environment_type")
|
|
317
|
+
|
|
318
|
+
@environment_type.setter
|
|
319
|
+
def environment_type(self, value: pulumi.Input[str]):
|
|
320
|
+
pulumi.set(self, "environment_type", value)
|
|
321
|
+
|
|
322
|
+
|
|
323
|
+
@pulumi.input_type
|
|
324
|
+
class CspmMonitorAwsOfferingNativeCloudConnectionArgs:
|
|
325
|
+
def __init__(__self__, *,
|
|
326
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
327
|
+
"""
|
|
328
|
+
The native cloud connection configuration
|
|
329
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
330
|
+
"""
|
|
331
|
+
if cloud_role_arn is not None:
|
|
332
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
333
|
+
|
|
334
|
+
@property
|
|
335
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
336
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
337
|
+
"""
|
|
338
|
+
The cloud role ARN in AWS for this feature
|
|
339
|
+
"""
|
|
340
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
341
|
+
|
|
342
|
+
@cloud_role_arn.setter
|
|
343
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
344
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
345
|
+
|
|
346
|
+
|
|
347
|
+
@pulumi.input_type
|
|
348
|
+
class CspmMonitorAwsOfferingArgs:
|
|
349
|
+
def __init__(__self__, *,
|
|
350
|
+
offering_type: pulumi.Input[str],
|
|
351
|
+
native_cloud_connection: Optional[pulumi.Input['CspmMonitorAwsOfferingNativeCloudConnectionArgs']] = None):
|
|
352
|
+
"""
|
|
353
|
+
The CSPM monitoring for AWS offering
|
|
354
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
355
|
+
Expected value is 'CspmMonitorAws'.
|
|
356
|
+
:param pulumi.Input['CspmMonitorAwsOfferingNativeCloudConnectionArgs'] native_cloud_connection: The native cloud connection configuration
|
|
357
|
+
"""
|
|
358
|
+
pulumi.set(__self__, "offering_type", 'CspmMonitorAws')
|
|
359
|
+
if native_cloud_connection is not None:
|
|
360
|
+
pulumi.set(__self__, "native_cloud_connection", native_cloud_connection)
|
|
361
|
+
|
|
362
|
+
@property
|
|
363
|
+
@pulumi.getter(name="offeringType")
|
|
364
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
365
|
+
"""
|
|
366
|
+
The type of the security offering.
|
|
367
|
+
Expected value is 'CspmMonitorAws'.
|
|
368
|
+
"""
|
|
369
|
+
return pulumi.get(self, "offering_type")
|
|
370
|
+
|
|
371
|
+
@offering_type.setter
|
|
372
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
373
|
+
pulumi.set(self, "offering_type", value)
|
|
374
|
+
|
|
375
|
+
@property
|
|
376
|
+
@pulumi.getter(name="nativeCloudConnection")
|
|
377
|
+
def native_cloud_connection(self) -> Optional[pulumi.Input['CspmMonitorAwsOfferingNativeCloudConnectionArgs']]:
|
|
378
|
+
"""
|
|
379
|
+
The native cloud connection configuration
|
|
380
|
+
"""
|
|
381
|
+
return pulumi.get(self, "native_cloud_connection")
|
|
382
|
+
|
|
383
|
+
@native_cloud_connection.setter
|
|
384
|
+
def native_cloud_connection(self, value: Optional[pulumi.Input['CspmMonitorAwsOfferingNativeCloudConnectionArgs']]):
|
|
385
|
+
pulumi.set(self, "native_cloud_connection", value)
|
|
386
|
+
|
|
387
|
+
|
|
388
|
+
@pulumi.input_type
|
|
389
|
+
class CspmMonitorAzureDevOpsOfferingArgs:
|
|
390
|
+
def __init__(__self__, *,
|
|
391
|
+
offering_type: pulumi.Input[str]):
|
|
392
|
+
"""
|
|
393
|
+
The CSPM monitoring for AzureDevOps offering
|
|
394
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
395
|
+
Expected value is 'CspmMonitorAzureDevOps'.
|
|
396
|
+
"""
|
|
397
|
+
pulumi.set(__self__, "offering_type", 'CspmMonitorAzureDevOps')
|
|
398
|
+
|
|
399
|
+
@property
|
|
400
|
+
@pulumi.getter(name="offeringType")
|
|
401
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
402
|
+
"""
|
|
403
|
+
The type of the security offering.
|
|
404
|
+
Expected value is 'CspmMonitorAzureDevOps'.
|
|
405
|
+
"""
|
|
406
|
+
return pulumi.get(self, "offering_type")
|
|
407
|
+
|
|
408
|
+
@offering_type.setter
|
|
409
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
410
|
+
pulumi.set(self, "offering_type", value)
|
|
411
|
+
|
|
412
|
+
|
|
413
|
+
@pulumi.input_type
|
|
414
|
+
class CspmMonitorGcpOfferingNativeCloudConnectionArgs:
|
|
415
|
+
def __init__(__self__, *,
|
|
416
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
417
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
418
|
+
"""
|
|
419
|
+
The native cloud connection configuration
|
|
420
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this offering
|
|
421
|
+
:param pulumi.Input[str] workload_identity_provider_id: The GCP workload identity provider id for the offering
|
|
422
|
+
"""
|
|
423
|
+
if service_account_email_address is not None:
|
|
424
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
425
|
+
if workload_identity_provider_id is not None:
|
|
426
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
427
|
+
|
|
428
|
+
@property
|
|
429
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
430
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
431
|
+
"""
|
|
432
|
+
The service account email address in GCP for this offering
|
|
433
|
+
"""
|
|
434
|
+
return pulumi.get(self, "service_account_email_address")
|
|
435
|
+
|
|
436
|
+
@service_account_email_address.setter
|
|
437
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
438
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
439
|
+
|
|
440
|
+
@property
|
|
441
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
442
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
443
|
+
"""
|
|
444
|
+
The GCP workload identity provider id for the offering
|
|
445
|
+
"""
|
|
446
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
447
|
+
|
|
448
|
+
@workload_identity_provider_id.setter
|
|
449
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
450
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
451
|
+
|
|
452
|
+
|
|
453
|
+
@pulumi.input_type
|
|
454
|
+
class CspmMonitorGcpOfferingArgs:
|
|
455
|
+
def __init__(__self__, *,
|
|
456
|
+
offering_type: pulumi.Input[str],
|
|
457
|
+
native_cloud_connection: Optional[pulumi.Input['CspmMonitorGcpOfferingNativeCloudConnectionArgs']] = None):
|
|
458
|
+
"""
|
|
459
|
+
The CSPM monitoring for GCP offering
|
|
460
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
461
|
+
Expected value is 'CspmMonitorGcp'.
|
|
462
|
+
:param pulumi.Input['CspmMonitorGcpOfferingNativeCloudConnectionArgs'] native_cloud_connection: The native cloud connection configuration
|
|
463
|
+
"""
|
|
464
|
+
pulumi.set(__self__, "offering_type", 'CspmMonitorGcp')
|
|
465
|
+
if native_cloud_connection is not None:
|
|
466
|
+
pulumi.set(__self__, "native_cloud_connection", native_cloud_connection)
|
|
467
|
+
|
|
468
|
+
@property
|
|
469
|
+
@pulumi.getter(name="offeringType")
|
|
470
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
471
|
+
"""
|
|
472
|
+
The type of the security offering.
|
|
473
|
+
Expected value is 'CspmMonitorGcp'.
|
|
474
|
+
"""
|
|
475
|
+
return pulumi.get(self, "offering_type")
|
|
476
|
+
|
|
477
|
+
@offering_type.setter
|
|
478
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
479
|
+
pulumi.set(self, "offering_type", value)
|
|
480
|
+
|
|
481
|
+
@property
|
|
482
|
+
@pulumi.getter(name="nativeCloudConnection")
|
|
483
|
+
def native_cloud_connection(self) -> Optional[pulumi.Input['CspmMonitorGcpOfferingNativeCloudConnectionArgs']]:
|
|
484
|
+
"""
|
|
485
|
+
The native cloud connection configuration
|
|
486
|
+
"""
|
|
487
|
+
return pulumi.get(self, "native_cloud_connection")
|
|
488
|
+
|
|
489
|
+
@native_cloud_connection.setter
|
|
490
|
+
def native_cloud_connection(self, value: Optional[pulumi.Input['CspmMonitorGcpOfferingNativeCloudConnectionArgs']]):
|
|
491
|
+
pulumi.set(self, "native_cloud_connection", value)
|
|
492
|
+
|
|
493
|
+
|
|
494
|
+
@pulumi.input_type
|
|
495
|
+
class CspmMonitorGitLabOfferingArgs:
|
|
496
|
+
def __init__(__self__, *,
|
|
497
|
+
offering_type: pulumi.Input[str]):
|
|
498
|
+
"""
|
|
499
|
+
The CSPM (Cloud security posture management) monitoring for gitlab offering
|
|
500
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
501
|
+
Expected value is 'CspmMonitorGitLab'.
|
|
502
|
+
"""
|
|
503
|
+
pulumi.set(__self__, "offering_type", 'CspmMonitorGitLab')
|
|
504
|
+
|
|
505
|
+
@property
|
|
506
|
+
@pulumi.getter(name="offeringType")
|
|
507
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
508
|
+
"""
|
|
509
|
+
The type of the security offering.
|
|
510
|
+
Expected value is 'CspmMonitorGitLab'.
|
|
511
|
+
"""
|
|
512
|
+
return pulumi.get(self, "offering_type")
|
|
513
|
+
|
|
514
|
+
@offering_type.setter
|
|
515
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
516
|
+
pulumi.set(self, "offering_type", value)
|
|
517
|
+
|
|
518
|
+
|
|
519
|
+
@pulumi.input_type
|
|
520
|
+
class CspmMonitorGithubOfferingArgs:
|
|
521
|
+
def __init__(__self__, *,
|
|
522
|
+
offering_type: pulumi.Input[str]):
|
|
523
|
+
"""
|
|
524
|
+
The CSPM monitoring for github offering
|
|
525
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
526
|
+
Expected value is 'CspmMonitorGithub'.
|
|
527
|
+
"""
|
|
528
|
+
pulumi.set(__self__, "offering_type", 'CspmMonitorGithub')
|
|
529
|
+
|
|
530
|
+
@property
|
|
531
|
+
@pulumi.getter(name="offeringType")
|
|
532
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
533
|
+
"""
|
|
534
|
+
The type of the security offering.
|
|
535
|
+
Expected value is 'CspmMonitorGithub'.
|
|
536
|
+
"""
|
|
537
|
+
return pulumi.get(self, "offering_type")
|
|
538
|
+
|
|
539
|
+
@offering_type.setter
|
|
540
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
541
|
+
pulumi.set(self, "offering_type", value)
|
|
542
|
+
|
|
543
|
+
|
|
544
|
+
@pulumi.input_type
|
|
545
|
+
class DefenderCspmAwsOfferingCiemDiscoveryArgs:
|
|
546
|
+
def __init__(__self__, *,
|
|
547
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
548
|
+
"""
|
|
549
|
+
Defender CSPM Permissions Management discovery configuration
|
|
550
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for Permissions Management discovery
|
|
551
|
+
"""
|
|
552
|
+
if cloud_role_arn is not None:
|
|
553
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
554
|
+
|
|
555
|
+
@property
|
|
556
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
557
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
558
|
+
"""
|
|
559
|
+
The cloud role ARN in AWS for Permissions Management discovery
|
|
560
|
+
"""
|
|
561
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
562
|
+
|
|
563
|
+
@cloud_role_arn.setter
|
|
564
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
565
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
566
|
+
|
|
567
|
+
|
|
568
|
+
@pulumi.input_type
|
|
569
|
+
class DefenderCspmAwsOfferingCiemOidcArgs:
|
|
570
|
+
def __init__(__self__, *,
|
|
571
|
+
azure_active_directory_app_name: Optional[pulumi.Input[str]] = None,
|
|
572
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
573
|
+
"""
|
|
574
|
+
AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations
|
|
575
|
+
:param pulumi.Input[str] azure_active_directory_app_name: the azure active directory app name used of authenticating against AWS
|
|
576
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for Permissions Management used for oidc connection
|
|
577
|
+
"""
|
|
578
|
+
if azure_active_directory_app_name is not None:
|
|
579
|
+
pulumi.set(__self__, "azure_active_directory_app_name", azure_active_directory_app_name)
|
|
580
|
+
if cloud_role_arn is not None:
|
|
581
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
582
|
+
|
|
583
|
+
@property
|
|
584
|
+
@pulumi.getter(name="azureActiveDirectoryAppName")
|
|
585
|
+
def azure_active_directory_app_name(self) -> Optional[pulumi.Input[str]]:
|
|
586
|
+
"""
|
|
587
|
+
the azure active directory app name used of authenticating against AWS
|
|
588
|
+
"""
|
|
589
|
+
return pulumi.get(self, "azure_active_directory_app_name")
|
|
590
|
+
|
|
591
|
+
@azure_active_directory_app_name.setter
|
|
592
|
+
def azure_active_directory_app_name(self, value: Optional[pulumi.Input[str]]):
|
|
593
|
+
pulumi.set(self, "azure_active_directory_app_name", value)
|
|
594
|
+
|
|
595
|
+
@property
|
|
596
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
597
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
598
|
+
"""
|
|
599
|
+
The cloud role ARN in AWS for Permissions Management used for oidc connection
|
|
600
|
+
"""
|
|
601
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
602
|
+
|
|
603
|
+
@cloud_role_arn.setter
|
|
604
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
605
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
606
|
+
|
|
607
|
+
|
|
608
|
+
@pulumi.input_type
|
|
609
|
+
class DefenderCspmAwsOfferingCiemArgs:
|
|
610
|
+
def __init__(__self__, *,
|
|
611
|
+
ciem_discovery: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemDiscoveryArgs']] = None,
|
|
612
|
+
ciem_oidc: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemOidcArgs']] = None):
|
|
613
|
+
"""
|
|
614
|
+
Defenders CSPM Permissions Management offering configurations
|
|
615
|
+
:param pulumi.Input['DefenderCspmAwsOfferingCiemDiscoveryArgs'] ciem_discovery: Defender CSPM Permissions Management discovery configuration
|
|
616
|
+
:param pulumi.Input['DefenderCspmAwsOfferingCiemOidcArgs'] ciem_oidc: AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations
|
|
617
|
+
"""
|
|
618
|
+
if ciem_discovery is not None:
|
|
619
|
+
pulumi.set(__self__, "ciem_discovery", ciem_discovery)
|
|
620
|
+
if ciem_oidc is not None:
|
|
621
|
+
pulumi.set(__self__, "ciem_oidc", ciem_oidc)
|
|
622
|
+
|
|
623
|
+
@property
|
|
624
|
+
@pulumi.getter(name="ciemDiscovery")
|
|
625
|
+
def ciem_discovery(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingCiemDiscoveryArgs']]:
|
|
626
|
+
"""
|
|
627
|
+
Defender CSPM Permissions Management discovery configuration
|
|
628
|
+
"""
|
|
629
|
+
return pulumi.get(self, "ciem_discovery")
|
|
630
|
+
|
|
631
|
+
@ciem_discovery.setter
|
|
632
|
+
def ciem_discovery(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemDiscoveryArgs']]):
|
|
633
|
+
pulumi.set(self, "ciem_discovery", value)
|
|
634
|
+
|
|
635
|
+
@property
|
|
636
|
+
@pulumi.getter(name="ciemOidc")
|
|
637
|
+
def ciem_oidc(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingCiemOidcArgs']]:
|
|
638
|
+
"""
|
|
639
|
+
AWS Defender CSPM Permissions Management OIDC (open id connect) connection configurations
|
|
640
|
+
"""
|
|
641
|
+
return pulumi.get(self, "ciem_oidc")
|
|
642
|
+
|
|
643
|
+
@ciem_oidc.setter
|
|
644
|
+
def ciem_oidc(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemOidcArgs']]):
|
|
645
|
+
pulumi.set(self, "ciem_oidc", value)
|
|
646
|
+
|
|
647
|
+
|
|
648
|
+
@pulumi.input_type
|
|
649
|
+
class DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs:
|
|
650
|
+
def __init__(__self__, *,
|
|
651
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
652
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
653
|
+
"""
|
|
654
|
+
The Microsoft Defender Data Sensitivity discovery configuration
|
|
655
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
656
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender Data Sensitivity discovery enabled
|
|
657
|
+
"""
|
|
658
|
+
if cloud_role_arn is not None:
|
|
659
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
660
|
+
if enabled is not None:
|
|
661
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
662
|
+
|
|
663
|
+
@property
|
|
664
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
665
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
666
|
+
"""
|
|
667
|
+
The cloud role ARN in AWS for this feature
|
|
668
|
+
"""
|
|
669
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
670
|
+
|
|
671
|
+
@cloud_role_arn.setter
|
|
672
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
673
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
674
|
+
|
|
675
|
+
@property
|
|
676
|
+
@pulumi.getter
|
|
677
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
678
|
+
"""
|
|
679
|
+
Is Microsoft Defender Data Sensitivity discovery enabled
|
|
680
|
+
"""
|
|
681
|
+
return pulumi.get(self, "enabled")
|
|
682
|
+
|
|
683
|
+
@enabled.setter
|
|
684
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
685
|
+
pulumi.set(self, "enabled", value)
|
|
686
|
+
|
|
687
|
+
|
|
688
|
+
@pulumi.input_type
|
|
689
|
+
class DefenderCspmAwsOfferingDatabasesDspmArgs:
|
|
690
|
+
def __init__(__self__, *,
|
|
691
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
692
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
693
|
+
"""
|
|
694
|
+
The databases DSPM configuration
|
|
695
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
696
|
+
:param pulumi.Input[bool] enabled: Is databases DSPM protection enabled
|
|
697
|
+
"""
|
|
698
|
+
if cloud_role_arn is not None:
|
|
699
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
700
|
+
if enabled is not None:
|
|
701
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
702
|
+
|
|
703
|
+
@property
|
|
704
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
705
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
706
|
+
"""
|
|
707
|
+
The cloud role ARN in AWS for this feature
|
|
708
|
+
"""
|
|
709
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
710
|
+
|
|
711
|
+
@cloud_role_arn.setter
|
|
712
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
713
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
714
|
+
|
|
715
|
+
@property
|
|
716
|
+
@pulumi.getter
|
|
717
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
718
|
+
"""
|
|
719
|
+
Is databases DSPM protection enabled
|
|
720
|
+
"""
|
|
721
|
+
return pulumi.get(self, "enabled")
|
|
722
|
+
|
|
723
|
+
@enabled.setter
|
|
724
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
725
|
+
pulumi.set(self, "enabled", value)
|
|
726
|
+
|
|
727
|
+
|
|
728
|
+
@pulumi.input_type
|
|
729
|
+
class DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs:
|
|
730
|
+
def __init__(__self__, *,
|
|
731
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
732
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
733
|
+
"""
|
|
734
|
+
The Microsoft Defender container agentless discovery K8s configuration
|
|
735
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
736
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container agentless discovery K8s enabled
|
|
737
|
+
"""
|
|
738
|
+
if cloud_role_arn is not None:
|
|
739
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
740
|
+
if enabled is not None:
|
|
741
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
742
|
+
|
|
743
|
+
@property
|
|
744
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
745
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
746
|
+
"""
|
|
747
|
+
The cloud role ARN in AWS for this feature
|
|
748
|
+
"""
|
|
749
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
750
|
+
|
|
751
|
+
@cloud_role_arn.setter
|
|
752
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
753
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
754
|
+
|
|
755
|
+
@property
|
|
756
|
+
@pulumi.getter
|
|
757
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
758
|
+
"""
|
|
759
|
+
Is Microsoft Defender container agentless discovery K8s enabled
|
|
760
|
+
"""
|
|
761
|
+
return pulumi.get(self, "enabled")
|
|
762
|
+
|
|
763
|
+
@enabled.setter
|
|
764
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
765
|
+
pulumi.set(self, "enabled", value)
|
|
766
|
+
|
|
767
|
+
|
|
768
|
+
@pulumi.input_type
|
|
769
|
+
class DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs:
|
|
770
|
+
def __init__(__self__, *,
|
|
771
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
772
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
773
|
+
"""
|
|
774
|
+
The Microsoft Defender container image assessment configuration
|
|
775
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
776
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container image assessment enabled
|
|
777
|
+
"""
|
|
778
|
+
if cloud_role_arn is not None:
|
|
779
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
780
|
+
if enabled is not None:
|
|
781
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
782
|
+
|
|
783
|
+
@property
|
|
784
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
785
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
786
|
+
"""
|
|
787
|
+
The cloud role ARN in AWS for this feature
|
|
788
|
+
"""
|
|
789
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
790
|
+
|
|
791
|
+
@cloud_role_arn.setter
|
|
792
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
793
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
794
|
+
|
|
795
|
+
@property
|
|
796
|
+
@pulumi.getter
|
|
797
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
798
|
+
"""
|
|
799
|
+
Is Microsoft Defender container image assessment enabled
|
|
800
|
+
"""
|
|
801
|
+
return pulumi.get(self, "enabled")
|
|
802
|
+
|
|
803
|
+
@enabled.setter
|
|
804
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
805
|
+
pulumi.set(self, "enabled", value)
|
|
806
|
+
|
|
807
|
+
|
|
808
|
+
@pulumi.input_type
|
|
809
|
+
class DefenderCspmAwsOfferingVmScannersArgs:
|
|
810
|
+
def __init__(__self__, *,
|
|
811
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
812
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
813
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
814
|
+
"""
|
|
815
|
+
The Microsoft Defender for CSPM offering VM scanning configuration
|
|
816
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
817
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
818
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
819
|
+
"""
|
|
820
|
+
if cloud_role_arn is not None:
|
|
821
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
822
|
+
if configuration is not None:
|
|
823
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
824
|
+
if enabled is not None:
|
|
825
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
826
|
+
|
|
827
|
+
@property
|
|
828
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
829
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
830
|
+
"""
|
|
831
|
+
The cloud role ARN in AWS for this feature
|
|
832
|
+
"""
|
|
833
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
834
|
+
|
|
835
|
+
@cloud_role_arn.setter
|
|
836
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
837
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
838
|
+
|
|
839
|
+
@property
|
|
840
|
+
@pulumi.getter
|
|
841
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
842
|
+
"""
|
|
843
|
+
Configuration for VM scanning
|
|
844
|
+
"""
|
|
845
|
+
return pulumi.get(self, "configuration")
|
|
846
|
+
|
|
847
|
+
@configuration.setter
|
|
848
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
849
|
+
pulumi.set(self, "configuration", value)
|
|
850
|
+
|
|
851
|
+
@property
|
|
852
|
+
@pulumi.getter
|
|
853
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
854
|
+
"""
|
|
855
|
+
Is VM scanning enabled
|
|
856
|
+
"""
|
|
857
|
+
return pulumi.get(self, "enabled")
|
|
858
|
+
|
|
859
|
+
@enabled.setter
|
|
860
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
861
|
+
pulumi.set(self, "enabled", value)
|
|
862
|
+
|
|
863
|
+
|
|
864
|
+
@pulumi.input_type
|
|
865
|
+
class DefenderCspmAwsOfferingArgs:
|
|
866
|
+
def __init__(__self__, *,
|
|
867
|
+
offering_type: pulumi.Input[str],
|
|
868
|
+
ciem: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemArgs']] = None,
|
|
869
|
+
data_sensitivity_discovery: Optional[pulumi.Input['DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs']] = None,
|
|
870
|
+
databases_dspm: Optional[pulumi.Input['DefenderCspmAwsOfferingDatabasesDspmArgs']] = None,
|
|
871
|
+
mdc_containers_agentless_discovery_k8s: Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']] = None,
|
|
872
|
+
mdc_containers_image_assessment: Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs']] = None,
|
|
873
|
+
vm_scanners: Optional[pulumi.Input['DefenderCspmAwsOfferingVmScannersArgs']] = None):
|
|
874
|
+
"""
|
|
875
|
+
The CSPM P1 for AWS offering
|
|
876
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
877
|
+
Expected value is 'DefenderCspmAws'.
|
|
878
|
+
:param pulumi.Input['DefenderCspmAwsOfferingCiemArgs'] ciem: Defenders CSPM Permissions Management offering configurations
|
|
879
|
+
:param pulumi.Input['DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs'] data_sensitivity_discovery: The Microsoft Defender Data Sensitivity discovery configuration
|
|
880
|
+
:param pulumi.Input['DefenderCspmAwsOfferingDatabasesDspmArgs'] databases_dspm: The databases DSPM configuration
|
|
881
|
+
:param pulumi.Input['DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs'] mdc_containers_agentless_discovery_k8s: The Microsoft Defender container agentless discovery K8s configuration
|
|
882
|
+
:param pulumi.Input['DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs'] mdc_containers_image_assessment: The Microsoft Defender container image assessment configuration
|
|
883
|
+
:param pulumi.Input['DefenderCspmAwsOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for CSPM offering VM scanning configuration
|
|
884
|
+
"""
|
|
885
|
+
pulumi.set(__self__, "offering_type", 'DefenderCspmAws')
|
|
886
|
+
if ciem is not None:
|
|
887
|
+
pulumi.set(__self__, "ciem", ciem)
|
|
888
|
+
if data_sensitivity_discovery is not None:
|
|
889
|
+
pulumi.set(__self__, "data_sensitivity_discovery", data_sensitivity_discovery)
|
|
890
|
+
if databases_dspm is not None:
|
|
891
|
+
pulumi.set(__self__, "databases_dspm", databases_dspm)
|
|
892
|
+
if mdc_containers_agentless_discovery_k8s is not None:
|
|
893
|
+
pulumi.set(__self__, "mdc_containers_agentless_discovery_k8s", mdc_containers_agentless_discovery_k8s)
|
|
894
|
+
if mdc_containers_image_assessment is not None:
|
|
895
|
+
pulumi.set(__self__, "mdc_containers_image_assessment", mdc_containers_image_assessment)
|
|
896
|
+
if vm_scanners is not None:
|
|
897
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
898
|
+
|
|
899
|
+
@property
|
|
900
|
+
@pulumi.getter(name="offeringType")
|
|
901
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
902
|
+
"""
|
|
903
|
+
The type of the security offering.
|
|
904
|
+
Expected value is 'DefenderCspmAws'.
|
|
905
|
+
"""
|
|
906
|
+
return pulumi.get(self, "offering_type")
|
|
907
|
+
|
|
908
|
+
@offering_type.setter
|
|
909
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
910
|
+
pulumi.set(self, "offering_type", value)
|
|
911
|
+
|
|
912
|
+
@property
|
|
913
|
+
@pulumi.getter
|
|
914
|
+
def ciem(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingCiemArgs']]:
|
|
915
|
+
"""
|
|
916
|
+
Defenders CSPM Permissions Management offering configurations
|
|
917
|
+
"""
|
|
918
|
+
return pulumi.get(self, "ciem")
|
|
919
|
+
|
|
920
|
+
@ciem.setter
|
|
921
|
+
def ciem(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingCiemArgs']]):
|
|
922
|
+
pulumi.set(self, "ciem", value)
|
|
923
|
+
|
|
924
|
+
@property
|
|
925
|
+
@pulumi.getter(name="dataSensitivityDiscovery")
|
|
926
|
+
def data_sensitivity_discovery(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs']]:
|
|
927
|
+
"""
|
|
928
|
+
The Microsoft Defender Data Sensitivity discovery configuration
|
|
929
|
+
"""
|
|
930
|
+
return pulumi.get(self, "data_sensitivity_discovery")
|
|
931
|
+
|
|
932
|
+
@data_sensitivity_discovery.setter
|
|
933
|
+
def data_sensitivity_discovery(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingDataSensitivityDiscoveryArgs']]):
|
|
934
|
+
pulumi.set(self, "data_sensitivity_discovery", value)
|
|
935
|
+
|
|
936
|
+
@property
|
|
937
|
+
@pulumi.getter(name="databasesDspm")
|
|
938
|
+
def databases_dspm(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingDatabasesDspmArgs']]:
|
|
939
|
+
"""
|
|
940
|
+
The databases DSPM configuration
|
|
941
|
+
"""
|
|
942
|
+
return pulumi.get(self, "databases_dspm")
|
|
943
|
+
|
|
944
|
+
@databases_dspm.setter
|
|
945
|
+
def databases_dspm(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingDatabasesDspmArgs']]):
|
|
946
|
+
pulumi.set(self, "databases_dspm", value)
|
|
947
|
+
|
|
948
|
+
@property
|
|
949
|
+
@pulumi.getter(name="mdcContainersAgentlessDiscoveryK8s")
|
|
950
|
+
def mdc_containers_agentless_discovery_k8s(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']]:
|
|
951
|
+
"""
|
|
952
|
+
The Microsoft Defender container agentless discovery K8s configuration
|
|
953
|
+
"""
|
|
954
|
+
return pulumi.get(self, "mdc_containers_agentless_discovery_k8s")
|
|
955
|
+
|
|
956
|
+
@mdc_containers_agentless_discovery_k8s.setter
|
|
957
|
+
def mdc_containers_agentless_discovery_k8s(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']]):
|
|
958
|
+
pulumi.set(self, "mdc_containers_agentless_discovery_k8s", value)
|
|
959
|
+
|
|
960
|
+
@property
|
|
961
|
+
@pulumi.getter(name="mdcContainersImageAssessment")
|
|
962
|
+
def mdc_containers_image_assessment(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs']]:
|
|
963
|
+
"""
|
|
964
|
+
The Microsoft Defender container image assessment configuration
|
|
965
|
+
"""
|
|
966
|
+
return pulumi.get(self, "mdc_containers_image_assessment")
|
|
967
|
+
|
|
968
|
+
@mdc_containers_image_assessment.setter
|
|
969
|
+
def mdc_containers_image_assessment(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingMdcContainersImageAssessmentArgs']]):
|
|
970
|
+
pulumi.set(self, "mdc_containers_image_assessment", value)
|
|
971
|
+
|
|
972
|
+
@property
|
|
973
|
+
@pulumi.getter(name="vmScanners")
|
|
974
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderCspmAwsOfferingVmScannersArgs']]:
|
|
975
|
+
"""
|
|
976
|
+
The Microsoft Defender for CSPM offering VM scanning configuration
|
|
977
|
+
"""
|
|
978
|
+
return pulumi.get(self, "vm_scanners")
|
|
979
|
+
|
|
980
|
+
@vm_scanners.setter
|
|
981
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderCspmAwsOfferingVmScannersArgs']]):
|
|
982
|
+
pulumi.set(self, "vm_scanners", value)
|
|
983
|
+
|
|
984
|
+
|
|
985
|
+
@pulumi.input_type
|
|
986
|
+
class DefenderCspmGcpOfferingCiemDiscoveryArgs:
|
|
987
|
+
def __init__(__self__, *,
|
|
988
|
+
azure_active_directory_app_name: Optional[pulumi.Input[str]] = None,
|
|
989
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
990
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
991
|
+
"""
|
|
992
|
+
GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations
|
|
993
|
+
:param pulumi.Input[str] azure_active_directory_app_name: the azure active directory app name used of authenticating against GCP workload identity federation
|
|
994
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for Permissions Management offering
|
|
995
|
+
:param pulumi.Input[str] workload_identity_provider_id: The GCP workload identity provider id for Permissions Management offering
|
|
996
|
+
"""
|
|
997
|
+
if azure_active_directory_app_name is not None:
|
|
998
|
+
pulumi.set(__self__, "azure_active_directory_app_name", azure_active_directory_app_name)
|
|
999
|
+
if service_account_email_address is not None:
|
|
1000
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
1001
|
+
if workload_identity_provider_id is not None:
|
|
1002
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
1003
|
+
|
|
1004
|
+
@property
|
|
1005
|
+
@pulumi.getter(name="azureActiveDirectoryAppName")
|
|
1006
|
+
def azure_active_directory_app_name(self) -> Optional[pulumi.Input[str]]:
|
|
1007
|
+
"""
|
|
1008
|
+
the azure active directory app name used of authenticating against GCP workload identity federation
|
|
1009
|
+
"""
|
|
1010
|
+
return pulumi.get(self, "azure_active_directory_app_name")
|
|
1011
|
+
|
|
1012
|
+
@azure_active_directory_app_name.setter
|
|
1013
|
+
def azure_active_directory_app_name(self, value: Optional[pulumi.Input[str]]):
|
|
1014
|
+
pulumi.set(self, "azure_active_directory_app_name", value)
|
|
1015
|
+
|
|
1016
|
+
@property
|
|
1017
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
1018
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
1019
|
+
"""
|
|
1020
|
+
The service account email address in GCP for Permissions Management offering
|
|
1021
|
+
"""
|
|
1022
|
+
return pulumi.get(self, "service_account_email_address")
|
|
1023
|
+
|
|
1024
|
+
@service_account_email_address.setter
|
|
1025
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
1026
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
1027
|
+
|
|
1028
|
+
@property
|
|
1029
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
1030
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
1031
|
+
"""
|
|
1032
|
+
The GCP workload identity provider id for Permissions Management offering
|
|
1033
|
+
"""
|
|
1034
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
1035
|
+
|
|
1036
|
+
@workload_identity_provider_id.setter
|
|
1037
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
1038
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
1039
|
+
|
|
1040
|
+
|
|
1041
|
+
@pulumi.input_type
|
|
1042
|
+
class DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs:
|
|
1043
|
+
def __init__(__self__, *,
|
|
1044
|
+
enabled: Optional[pulumi.Input[bool]] = None,
|
|
1045
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
1046
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
1047
|
+
"""
|
|
1048
|
+
The Microsoft Defender Data Sensitivity discovery configuration
|
|
1049
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender Data Sensitivity discovery enabled
|
|
1050
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
1051
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
1052
|
+
"""
|
|
1053
|
+
if enabled is not None:
|
|
1054
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1055
|
+
if service_account_email_address is not None:
|
|
1056
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
1057
|
+
if workload_identity_provider_id is not None:
|
|
1058
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
1059
|
+
|
|
1060
|
+
@property
|
|
1061
|
+
@pulumi.getter
|
|
1062
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1063
|
+
"""
|
|
1064
|
+
Is Microsoft Defender Data Sensitivity discovery enabled
|
|
1065
|
+
"""
|
|
1066
|
+
return pulumi.get(self, "enabled")
|
|
1067
|
+
|
|
1068
|
+
@enabled.setter
|
|
1069
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1070
|
+
pulumi.set(self, "enabled", value)
|
|
1071
|
+
|
|
1072
|
+
@property
|
|
1073
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
1074
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
1075
|
+
"""
|
|
1076
|
+
The service account email address in GCP for this feature
|
|
1077
|
+
"""
|
|
1078
|
+
return pulumi.get(self, "service_account_email_address")
|
|
1079
|
+
|
|
1080
|
+
@service_account_email_address.setter
|
|
1081
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
1082
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
1083
|
+
|
|
1084
|
+
@property
|
|
1085
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
1086
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
1087
|
+
"""
|
|
1088
|
+
The workload identity provider id in GCP for this feature
|
|
1089
|
+
"""
|
|
1090
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
1091
|
+
|
|
1092
|
+
@workload_identity_provider_id.setter
|
|
1093
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
1094
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
1095
|
+
|
|
1096
|
+
|
|
1097
|
+
@pulumi.input_type
|
|
1098
|
+
class DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs:
|
|
1099
|
+
def __init__(__self__, *,
|
|
1100
|
+
enabled: Optional[pulumi.Input[bool]] = None,
|
|
1101
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
1102
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
1103
|
+
"""
|
|
1104
|
+
The Microsoft Defender Container agentless discovery configuration
|
|
1105
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container agentless discovery enabled
|
|
1106
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
1107
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
1108
|
+
"""
|
|
1109
|
+
if enabled is not None:
|
|
1110
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1111
|
+
if service_account_email_address is not None:
|
|
1112
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
1113
|
+
if workload_identity_provider_id is not None:
|
|
1114
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
1115
|
+
|
|
1116
|
+
@property
|
|
1117
|
+
@pulumi.getter
|
|
1118
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1119
|
+
"""
|
|
1120
|
+
Is Microsoft Defender container agentless discovery enabled
|
|
1121
|
+
"""
|
|
1122
|
+
return pulumi.get(self, "enabled")
|
|
1123
|
+
|
|
1124
|
+
@enabled.setter
|
|
1125
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1126
|
+
pulumi.set(self, "enabled", value)
|
|
1127
|
+
|
|
1128
|
+
@property
|
|
1129
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
1130
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
1131
|
+
"""
|
|
1132
|
+
The service account email address in GCP for this feature
|
|
1133
|
+
"""
|
|
1134
|
+
return pulumi.get(self, "service_account_email_address")
|
|
1135
|
+
|
|
1136
|
+
@service_account_email_address.setter
|
|
1137
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
1138
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
1139
|
+
|
|
1140
|
+
@property
|
|
1141
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
1142
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
1143
|
+
"""
|
|
1144
|
+
The workload identity provider id in GCP for this feature
|
|
1145
|
+
"""
|
|
1146
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
1147
|
+
|
|
1148
|
+
@workload_identity_provider_id.setter
|
|
1149
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
1150
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
1151
|
+
|
|
1152
|
+
|
|
1153
|
+
@pulumi.input_type
|
|
1154
|
+
class DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs:
|
|
1155
|
+
def __init__(__self__, *,
|
|
1156
|
+
enabled: Optional[pulumi.Input[bool]] = None,
|
|
1157
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
1158
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
1159
|
+
"""
|
|
1160
|
+
The Microsoft Defender Container image assessment configuration
|
|
1161
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container image assessment enabled
|
|
1162
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
1163
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
1164
|
+
"""
|
|
1165
|
+
if enabled is not None:
|
|
1166
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1167
|
+
if service_account_email_address is not None:
|
|
1168
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
1169
|
+
if workload_identity_provider_id is not None:
|
|
1170
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
1171
|
+
|
|
1172
|
+
@property
|
|
1173
|
+
@pulumi.getter
|
|
1174
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1175
|
+
"""
|
|
1176
|
+
Is Microsoft Defender container image assessment enabled
|
|
1177
|
+
"""
|
|
1178
|
+
return pulumi.get(self, "enabled")
|
|
1179
|
+
|
|
1180
|
+
@enabled.setter
|
|
1181
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1182
|
+
pulumi.set(self, "enabled", value)
|
|
1183
|
+
|
|
1184
|
+
@property
|
|
1185
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
1186
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
1187
|
+
"""
|
|
1188
|
+
The service account email address in GCP for this feature
|
|
1189
|
+
"""
|
|
1190
|
+
return pulumi.get(self, "service_account_email_address")
|
|
1191
|
+
|
|
1192
|
+
@service_account_email_address.setter
|
|
1193
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
1194
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
1195
|
+
|
|
1196
|
+
@property
|
|
1197
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
1198
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
1199
|
+
"""
|
|
1200
|
+
The workload identity provider id in GCP for this feature
|
|
1201
|
+
"""
|
|
1202
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
1203
|
+
|
|
1204
|
+
@workload_identity_provider_id.setter
|
|
1205
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
1206
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
1207
|
+
|
|
1208
|
+
|
|
1209
|
+
@pulumi.input_type
|
|
1210
|
+
class DefenderCspmGcpOfferingVmScannersArgs:
|
|
1211
|
+
def __init__(__self__, *,
|
|
1212
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
1213
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1214
|
+
"""
|
|
1215
|
+
The Microsoft Defender for CSPM VM scanning configuration
|
|
1216
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
1217
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
1218
|
+
"""
|
|
1219
|
+
if configuration is not None:
|
|
1220
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
1221
|
+
if enabled is not None:
|
|
1222
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1223
|
+
|
|
1224
|
+
@property
|
|
1225
|
+
@pulumi.getter
|
|
1226
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
1227
|
+
"""
|
|
1228
|
+
Configuration for VM scanning
|
|
1229
|
+
"""
|
|
1230
|
+
return pulumi.get(self, "configuration")
|
|
1231
|
+
|
|
1232
|
+
@configuration.setter
|
|
1233
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
1234
|
+
pulumi.set(self, "configuration", value)
|
|
1235
|
+
|
|
1236
|
+
@property
|
|
1237
|
+
@pulumi.getter
|
|
1238
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1239
|
+
"""
|
|
1240
|
+
Is VM scanning enabled
|
|
1241
|
+
"""
|
|
1242
|
+
return pulumi.get(self, "enabled")
|
|
1243
|
+
|
|
1244
|
+
@enabled.setter
|
|
1245
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1246
|
+
pulumi.set(self, "enabled", value)
|
|
1247
|
+
|
|
1248
|
+
|
|
1249
|
+
@pulumi.input_type
|
|
1250
|
+
class DefenderCspmGcpOfferingArgs:
|
|
1251
|
+
def __init__(__self__, *,
|
|
1252
|
+
offering_type: pulumi.Input[str],
|
|
1253
|
+
ciem_discovery: Optional[pulumi.Input['DefenderCspmGcpOfferingCiemDiscoveryArgs']] = None,
|
|
1254
|
+
data_sensitivity_discovery: Optional[pulumi.Input['DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs']] = None,
|
|
1255
|
+
mdc_containers_agentless_discovery_k8s: Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']] = None,
|
|
1256
|
+
mdc_containers_image_assessment: Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs']] = None,
|
|
1257
|
+
vm_scanners: Optional[pulumi.Input['DefenderCspmGcpOfferingVmScannersArgs']] = None):
|
|
1258
|
+
"""
|
|
1259
|
+
The CSPM P1 for GCP offering
|
|
1260
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
1261
|
+
Expected value is 'DefenderCspmGcp'.
|
|
1262
|
+
:param pulumi.Input['DefenderCspmGcpOfferingCiemDiscoveryArgs'] ciem_discovery: GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations
|
|
1263
|
+
:param pulumi.Input['DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs'] data_sensitivity_discovery: The Microsoft Defender Data Sensitivity discovery configuration
|
|
1264
|
+
:param pulumi.Input['DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs'] mdc_containers_agentless_discovery_k8s: The Microsoft Defender Container agentless discovery configuration
|
|
1265
|
+
:param pulumi.Input['DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs'] mdc_containers_image_assessment: The Microsoft Defender Container image assessment configuration
|
|
1266
|
+
:param pulumi.Input['DefenderCspmGcpOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for CSPM VM scanning configuration
|
|
1267
|
+
"""
|
|
1268
|
+
pulumi.set(__self__, "offering_type", 'DefenderCspmGcp')
|
|
1269
|
+
if ciem_discovery is not None:
|
|
1270
|
+
pulumi.set(__self__, "ciem_discovery", ciem_discovery)
|
|
1271
|
+
if data_sensitivity_discovery is not None:
|
|
1272
|
+
pulumi.set(__self__, "data_sensitivity_discovery", data_sensitivity_discovery)
|
|
1273
|
+
if mdc_containers_agentless_discovery_k8s is not None:
|
|
1274
|
+
pulumi.set(__self__, "mdc_containers_agentless_discovery_k8s", mdc_containers_agentless_discovery_k8s)
|
|
1275
|
+
if mdc_containers_image_assessment is not None:
|
|
1276
|
+
pulumi.set(__self__, "mdc_containers_image_assessment", mdc_containers_image_assessment)
|
|
1277
|
+
if vm_scanners is not None:
|
|
1278
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
1279
|
+
|
|
1280
|
+
@property
|
|
1281
|
+
@pulumi.getter(name="offeringType")
|
|
1282
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
1283
|
+
"""
|
|
1284
|
+
The type of the security offering.
|
|
1285
|
+
Expected value is 'DefenderCspmGcp'.
|
|
1286
|
+
"""
|
|
1287
|
+
return pulumi.get(self, "offering_type")
|
|
1288
|
+
|
|
1289
|
+
@offering_type.setter
|
|
1290
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
1291
|
+
pulumi.set(self, "offering_type", value)
|
|
1292
|
+
|
|
1293
|
+
@property
|
|
1294
|
+
@pulumi.getter(name="ciemDiscovery")
|
|
1295
|
+
def ciem_discovery(self) -> Optional[pulumi.Input['DefenderCspmGcpOfferingCiemDiscoveryArgs']]:
|
|
1296
|
+
"""
|
|
1297
|
+
GCP Defenders CSPM Permissions Management OIDC (Open ID connect) connection configurations
|
|
1298
|
+
"""
|
|
1299
|
+
return pulumi.get(self, "ciem_discovery")
|
|
1300
|
+
|
|
1301
|
+
@ciem_discovery.setter
|
|
1302
|
+
def ciem_discovery(self, value: Optional[pulumi.Input['DefenderCspmGcpOfferingCiemDiscoveryArgs']]):
|
|
1303
|
+
pulumi.set(self, "ciem_discovery", value)
|
|
1304
|
+
|
|
1305
|
+
@property
|
|
1306
|
+
@pulumi.getter(name="dataSensitivityDiscovery")
|
|
1307
|
+
def data_sensitivity_discovery(self) -> Optional[pulumi.Input['DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs']]:
|
|
1308
|
+
"""
|
|
1309
|
+
The Microsoft Defender Data Sensitivity discovery configuration
|
|
1310
|
+
"""
|
|
1311
|
+
return pulumi.get(self, "data_sensitivity_discovery")
|
|
1312
|
+
|
|
1313
|
+
@data_sensitivity_discovery.setter
|
|
1314
|
+
def data_sensitivity_discovery(self, value: Optional[pulumi.Input['DefenderCspmGcpOfferingDataSensitivityDiscoveryArgs']]):
|
|
1315
|
+
pulumi.set(self, "data_sensitivity_discovery", value)
|
|
1316
|
+
|
|
1317
|
+
@property
|
|
1318
|
+
@pulumi.getter(name="mdcContainersAgentlessDiscoveryK8s")
|
|
1319
|
+
def mdc_containers_agentless_discovery_k8s(self) -> Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']]:
|
|
1320
|
+
"""
|
|
1321
|
+
The Microsoft Defender Container agentless discovery configuration
|
|
1322
|
+
"""
|
|
1323
|
+
return pulumi.get(self, "mdc_containers_agentless_discovery_k8s")
|
|
1324
|
+
|
|
1325
|
+
@mdc_containers_agentless_discovery_k8s.setter
|
|
1326
|
+
def mdc_containers_agentless_discovery_k8s(self, value: Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']]):
|
|
1327
|
+
pulumi.set(self, "mdc_containers_agentless_discovery_k8s", value)
|
|
1328
|
+
|
|
1329
|
+
@property
|
|
1330
|
+
@pulumi.getter(name="mdcContainersImageAssessment")
|
|
1331
|
+
def mdc_containers_image_assessment(self) -> Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs']]:
|
|
1332
|
+
"""
|
|
1333
|
+
The Microsoft Defender Container image assessment configuration
|
|
1334
|
+
"""
|
|
1335
|
+
return pulumi.get(self, "mdc_containers_image_assessment")
|
|
1336
|
+
|
|
1337
|
+
@mdc_containers_image_assessment.setter
|
|
1338
|
+
def mdc_containers_image_assessment(self, value: Optional[pulumi.Input['DefenderCspmGcpOfferingMdcContainersImageAssessmentArgs']]):
|
|
1339
|
+
pulumi.set(self, "mdc_containers_image_assessment", value)
|
|
1340
|
+
|
|
1341
|
+
@property
|
|
1342
|
+
@pulumi.getter(name="vmScanners")
|
|
1343
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderCspmGcpOfferingVmScannersArgs']]:
|
|
1344
|
+
"""
|
|
1345
|
+
The Microsoft Defender for CSPM VM scanning configuration
|
|
1346
|
+
"""
|
|
1347
|
+
return pulumi.get(self, "vm_scanners")
|
|
1348
|
+
|
|
1349
|
+
@vm_scanners.setter
|
|
1350
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderCspmGcpOfferingVmScannersArgs']]):
|
|
1351
|
+
pulumi.set(self, "vm_scanners", value)
|
|
1352
|
+
|
|
1353
|
+
|
|
1354
|
+
@pulumi.input_type
|
|
1355
|
+
class DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs:
|
|
1356
|
+
def __init__(__self__, *,
|
|
1357
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1358
|
+
configuration: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']] = None,
|
|
1359
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1360
|
+
"""
|
|
1361
|
+
The ARC autoprovisioning configuration
|
|
1362
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1363
|
+
:param pulumi.Input['ArcAutoProvisioningConfigurationArgs'] configuration: Configuration for servers Arc auto provisioning for a given environment
|
|
1364
|
+
:param pulumi.Input[bool] enabled: Is arc auto provisioning enabled
|
|
1365
|
+
"""
|
|
1366
|
+
if cloud_role_arn is not None:
|
|
1367
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1368
|
+
if configuration is not None:
|
|
1369
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
1370
|
+
if enabled is not None:
|
|
1371
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1372
|
+
|
|
1373
|
+
@property
|
|
1374
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1375
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1376
|
+
"""
|
|
1377
|
+
The cloud role ARN in AWS for this feature
|
|
1378
|
+
"""
|
|
1379
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1380
|
+
|
|
1381
|
+
@cloud_role_arn.setter
|
|
1382
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1383
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1384
|
+
|
|
1385
|
+
@property
|
|
1386
|
+
@pulumi.getter
|
|
1387
|
+
def configuration(self) -> Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]:
|
|
1388
|
+
"""
|
|
1389
|
+
Configuration for servers Arc auto provisioning for a given environment
|
|
1390
|
+
"""
|
|
1391
|
+
return pulumi.get(self, "configuration")
|
|
1392
|
+
|
|
1393
|
+
@configuration.setter
|
|
1394
|
+
def configuration(self, value: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]):
|
|
1395
|
+
pulumi.set(self, "configuration", value)
|
|
1396
|
+
|
|
1397
|
+
@property
|
|
1398
|
+
@pulumi.getter
|
|
1399
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1400
|
+
"""
|
|
1401
|
+
Is arc auto provisioning enabled
|
|
1402
|
+
"""
|
|
1403
|
+
return pulumi.get(self, "enabled")
|
|
1404
|
+
|
|
1405
|
+
@enabled.setter
|
|
1406
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1407
|
+
pulumi.set(self, "enabled", value)
|
|
1408
|
+
|
|
1409
|
+
|
|
1410
|
+
@pulumi.input_type
|
|
1411
|
+
class DefenderFoDatabasesAwsOfferingDatabasesDspmArgs:
|
|
1412
|
+
def __init__(__self__, *,
|
|
1413
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1414
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1415
|
+
"""
|
|
1416
|
+
The databases data security posture management (DSPM) configuration
|
|
1417
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1418
|
+
:param pulumi.Input[bool] enabled: Is databases data security posture management (DSPM) protection enabled
|
|
1419
|
+
"""
|
|
1420
|
+
if cloud_role_arn is not None:
|
|
1421
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1422
|
+
if enabled is not None:
|
|
1423
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1424
|
+
|
|
1425
|
+
@property
|
|
1426
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1427
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1428
|
+
"""
|
|
1429
|
+
The cloud role ARN in AWS for this feature
|
|
1430
|
+
"""
|
|
1431
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1432
|
+
|
|
1433
|
+
@cloud_role_arn.setter
|
|
1434
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1435
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1436
|
+
|
|
1437
|
+
@property
|
|
1438
|
+
@pulumi.getter
|
|
1439
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1440
|
+
"""
|
|
1441
|
+
Is databases data security posture management (DSPM) protection enabled
|
|
1442
|
+
"""
|
|
1443
|
+
return pulumi.get(self, "enabled")
|
|
1444
|
+
|
|
1445
|
+
@enabled.setter
|
|
1446
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1447
|
+
pulumi.set(self, "enabled", value)
|
|
1448
|
+
|
|
1449
|
+
|
|
1450
|
+
@pulumi.input_type
|
|
1451
|
+
class DefenderFoDatabasesAwsOfferingRdsArgs:
|
|
1452
|
+
def __init__(__self__, *,
|
|
1453
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1454
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1455
|
+
"""
|
|
1456
|
+
The RDS configuration
|
|
1457
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1458
|
+
:param pulumi.Input[bool] enabled: Is RDS protection enabled
|
|
1459
|
+
"""
|
|
1460
|
+
if cloud_role_arn is not None:
|
|
1461
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1462
|
+
if enabled is not None:
|
|
1463
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1464
|
+
|
|
1465
|
+
@property
|
|
1466
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1467
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1468
|
+
"""
|
|
1469
|
+
The cloud role ARN in AWS for this feature
|
|
1470
|
+
"""
|
|
1471
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1472
|
+
|
|
1473
|
+
@cloud_role_arn.setter
|
|
1474
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1475
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1476
|
+
|
|
1477
|
+
@property
|
|
1478
|
+
@pulumi.getter
|
|
1479
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1480
|
+
"""
|
|
1481
|
+
Is RDS protection enabled
|
|
1482
|
+
"""
|
|
1483
|
+
return pulumi.get(self, "enabled")
|
|
1484
|
+
|
|
1485
|
+
@enabled.setter
|
|
1486
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1487
|
+
pulumi.set(self, "enabled", value)
|
|
1488
|
+
|
|
1489
|
+
|
|
1490
|
+
@pulumi.input_type
|
|
1491
|
+
class DefenderFoDatabasesAwsOfferingArgs:
|
|
1492
|
+
def __init__(__self__, *,
|
|
1493
|
+
offering_type: pulumi.Input[str],
|
|
1494
|
+
arc_auto_provisioning: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs']] = None,
|
|
1495
|
+
databases_dspm: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingDatabasesDspmArgs']] = None,
|
|
1496
|
+
rds: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingRdsArgs']] = None):
|
|
1497
|
+
"""
|
|
1498
|
+
The Defender for Databases AWS offering
|
|
1499
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
1500
|
+
Expected value is 'DefenderForDatabasesAws'.
|
|
1501
|
+
:param pulumi.Input['DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs'] arc_auto_provisioning: The ARC autoprovisioning configuration
|
|
1502
|
+
:param pulumi.Input['DefenderFoDatabasesAwsOfferingDatabasesDspmArgs'] databases_dspm: The databases data security posture management (DSPM) configuration
|
|
1503
|
+
:param pulumi.Input['DefenderFoDatabasesAwsOfferingRdsArgs'] rds: The RDS configuration
|
|
1504
|
+
"""
|
|
1505
|
+
pulumi.set(__self__, "offering_type", 'DefenderForDatabasesAws')
|
|
1506
|
+
if arc_auto_provisioning is not None:
|
|
1507
|
+
pulumi.set(__self__, "arc_auto_provisioning", arc_auto_provisioning)
|
|
1508
|
+
if databases_dspm is not None:
|
|
1509
|
+
pulumi.set(__self__, "databases_dspm", databases_dspm)
|
|
1510
|
+
if rds is not None:
|
|
1511
|
+
pulumi.set(__self__, "rds", rds)
|
|
1512
|
+
|
|
1513
|
+
@property
|
|
1514
|
+
@pulumi.getter(name="offeringType")
|
|
1515
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
1516
|
+
"""
|
|
1517
|
+
The type of the security offering.
|
|
1518
|
+
Expected value is 'DefenderForDatabasesAws'.
|
|
1519
|
+
"""
|
|
1520
|
+
return pulumi.get(self, "offering_type")
|
|
1521
|
+
|
|
1522
|
+
@offering_type.setter
|
|
1523
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
1524
|
+
pulumi.set(self, "offering_type", value)
|
|
1525
|
+
|
|
1526
|
+
@property
|
|
1527
|
+
@pulumi.getter(name="arcAutoProvisioning")
|
|
1528
|
+
def arc_auto_provisioning(self) -> Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs']]:
|
|
1529
|
+
"""
|
|
1530
|
+
The ARC autoprovisioning configuration
|
|
1531
|
+
"""
|
|
1532
|
+
return pulumi.get(self, "arc_auto_provisioning")
|
|
1533
|
+
|
|
1534
|
+
@arc_auto_provisioning.setter
|
|
1535
|
+
def arc_auto_provisioning(self, value: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingArcAutoProvisioningArgs']]):
|
|
1536
|
+
pulumi.set(self, "arc_auto_provisioning", value)
|
|
1537
|
+
|
|
1538
|
+
@property
|
|
1539
|
+
@pulumi.getter(name="databasesDspm")
|
|
1540
|
+
def databases_dspm(self) -> Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingDatabasesDspmArgs']]:
|
|
1541
|
+
"""
|
|
1542
|
+
The databases data security posture management (DSPM) configuration
|
|
1543
|
+
"""
|
|
1544
|
+
return pulumi.get(self, "databases_dspm")
|
|
1545
|
+
|
|
1546
|
+
@databases_dspm.setter
|
|
1547
|
+
def databases_dspm(self, value: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingDatabasesDspmArgs']]):
|
|
1548
|
+
pulumi.set(self, "databases_dspm", value)
|
|
1549
|
+
|
|
1550
|
+
@property
|
|
1551
|
+
@pulumi.getter
|
|
1552
|
+
def rds(self) -> Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingRdsArgs']]:
|
|
1553
|
+
"""
|
|
1554
|
+
The RDS configuration
|
|
1555
|
+
"""
|
|
1556
|
+
return pulumi.get(self, "rds")
|
|
1557
|
+
|
|
1558
|
+
@rds.setter
|
|
1559
|
+
def rds(self, value: Optional[pulumi.Input['DefenderFoDatabasesAwsOfferingRdsArgs']]):
|
|
1560
|
+
pulumi.set(self, "rds", value)
|
|
1561
|
+
|
|
1562
|
+
|
|
1563
|
+
@pulumi.input_type
|
|
1564
|
+
class DefenderForContainersAwsOfferingCloudWatchToKinesisArgs:
|
|
1565
|
+
def __init__(__self__, *,
|
|
1566
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
1567
|
+
"""
|
|
1568
|
+
The cloudwatch to kinesis connection configuration
|
|
1569
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS used by CloudWatch to transfer data into Kinesis
|
|
1570
|
+
"""
|
|
1571
|
+
if cloud_role_arn is not None:
|
|
1572
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1573
|
+
|
|
1574
|
+
@property
|
|
1575
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1576
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1577
|
+
"""
|
|
1578
|
+
The cloud role ARN in AWS used by CloudWatch to transfer data into Kinesis
|
|
1579
|
+
"""
|
|
1580
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1581
|
+
|
|
1582
|
+
@cloud_role_arn.setter
|
|
1583
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1584
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1585
|
+
|
|
1586
|
+
|
|
1587
|
+
@pulumi.input_type
|
|
1588
|
+
class DefenderForContainersAwsOfferingKinesisToS3Args:
|
|
1589
|
+
def __init__(__self__, *,
|
|
1590
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
1591
|
+
"""
|
|
1592
|
+
The kinesis to s3 connection configuration
|
|
1593
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS used by Kinesis to transfer data into S3
|
|
1594
|
+
"""
|
|
1595
|
+
if cloud_role_arn is not None:
|
|
1596
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1597
|
+
|
|
1598
|
+
@property
|
|
1599
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1600
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1601
|
+
"""
|
|
1602
|
+
The cloud role ARN in AWS used by Kinesis to transfer data into S3
|
|
1603
|
+
"""
|
|
1604
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1605
|
+
|
|
1606
|
+
@cloud_role_arn.setter
|
|
1607
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1608
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1609
|
+
|
|
1610
|
+
|
|
1611
|
+
@pulumi.input_type
|
|
1612
|
+
class DefenderForContainersAwsOfferingKubernetesDataCollectionArgs:
|
|
1613
|
+
def __init__(__self__, *,
|
|
1614
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
1615
|
+
"""
|
|
1616
|
+
The kubernetes data collection connection configuration
|
|
1617
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature used for reading data
|
|
1618
|
+
"""
|
|
1619
|
+
if cloud_role_arn is not None:
|
|
1620
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1621
|
+
|
|
1622
|
+
@property
|
|
1623
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1624
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1625
|
+
"""
|
|
1626
|
+
The cloud role ARN in AWS for this feature used for reading data
|
|
1627
|
+
"""
|
|
1628
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1629
|
+
|
|
1630
|
+
@cloud_role_arn.setter
|
|
1631
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1632
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1633
|
+
|
|
1634
|
+
|
|
1635
|
+
@pulumi.input_type
|
|
1636
|
+
class DefenderForContainersAwsOfferingKubernetesServiceArgs:
|
|
1637
|
+
def __init__(__self__, *,
|
|
1638
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
1639
|
+
"""
|
|
1640
|
+
The kubernetes service connection configuration
|
|
1641
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature used for provisioning resources
|
|
1642
|
+
"""
|
|
1643
|
+
if cloud_role_arn is not None:
|
|
1644
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1645
|
+
|
|
1646
|
+
@property
|
|
1647
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1648
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1649
|
+
"""
|
|
1650
|
+
The cloud role ARN in AWS for this feature used for provisioning resources
|
|
1651
|
+
"""
|
|
1652
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1653
|
+
|
|
1654
|
+
@cloud_role_arn.setter
|
|
1655
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1656
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1657
|
+
|
|
1658
|
+
|
|
1659
|
+
@pulumi.input_type
|
|
1660
|
+
class DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs:
|
|
1661
|
+
def __init__(__self__, *,
|
|
1662
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1663
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1664
|
+
"""
|
|
1665
|
+
The Microsoft Defender container agentless discovery K8s configuration
|
|
1666
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1667
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container agentless discovery K8s enabled
|
|
1668
|
+
"""
|
|
1669
|
+
if cloud_role_arn is not None:
|
|
1670
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1671
|
+
if enabled is not None:
|
|
1672
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1673
|
+
|
|
1674
|
+
@property
|
|
1675
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1676
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1677
|
+
"""
|
|
1678
|
+
The cloud role ARN in AWS for this feature
|
|
1679
|
+
"""
|
|
1680
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1681
|
+
|
|
1682
|
+
@cloud_role_arn.setter
|
|
1683
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1684
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1685
|
+
|
|
1686
|
+
@property
|
|
1687
|
+
@pulumi.getter
|
|
1688
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1689
|
+
"""
|
|
1690
|
+
Is Microsoft Defender container agentless discovery K8s enabled
|
|
1691
|
+
"""
|
|
1692
|
+
return pulumi.get(self, "enabled")
|
|
1693
|
+
|
|
1694
|
+
@enabled.setter
|
|
1695
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1696
|
+
pulumi.set(self, "enabled", value)
|
|
1697
|
+
|
|
1698
|
+
|
|
1699
|
+
@pulumi.input_type
|
|
1700
|
+
class DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs:
|
|
1701
|
+
def __init__(__self__, *,
|
|
1702
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1703
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1704
|
+
"""
|
|
1705
|
+
The Microsoft Defender container image assessment configuration
|
|
1706
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1707
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container image assessment enabled
|
|
1708
|
+
"""
|
|
1709
|
+
if cloud_role_arn is not None:
|
|
1710
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1711
|
+
if enabled is not None:
|
|
1712
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1713
|
+
|
|
1714
|
+
@property
|
|
1715
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1716
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1717
|
+
"""
|
|
1718
|
+
The cloud role ARN in AWS for this feature
|
|
1719
|
+
"""
|
|
1720
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1721
|
+
|
|
1722
|
+
@cloud_role_arn.setter
|
|
1723
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1724
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1725
|
+
|
|
1726
|
+
@property
|
|
1727
|
+
@pulumi.getter
|
|
1728
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1729
|
+
"""
|
|
1730
|
+
Is Microsoft Defender container image assessment enabled
|
|
1731
|
+
"""
|
|
1732
|
+
return pulumi.get(self, "enabled")
|
|
1733
|
+
|
|
1734
|
+
@enabled.setter
|
|
1735
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1736
|
+
pulumi.set(self, "enabled", value)
|
|
1737
|
+
|
|
1738
|
+
|
|
1739
|
+
@pulumi.input_type
|
|
1740
|
+
class DefenderForContainersAwsOfferingVmScannersArgs:
|
|
1741
|
+
def __init__(__self__, *,
|
|
1742
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
1743
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
1744
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
1745
|
+
"""
|
|
1746
|
+
The Microsoft Defender for Container K8s VM host scanning configuration
|
|
1747
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
1748
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
1749
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
1750
|
+
"""
|
|
1751
|
+
if cloud_role_arn is not None:
|
|
1752
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
1753
|
+
if configuration is not None:
|
|
1754
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
1755
|
+
if enabled is not None:
|
|
1756
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
1757
|
+
|
|
1758
|
+
@property
|
|
1759
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
1760
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
1761
|
+
"""
|
|
1762
|
+
The cloud role ARN in AWS for this feature
|
|
1763
|
+
"""
|
|
1764
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
1765
|
+
|
|
1766
|
+
@cloud_role_arn.setter
|
|
1767
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
1768
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
1769
|
+
|
|
1770
|
+
@property
|
|
1771
|
+
@pulumi.getter
|
|
1772
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
1773
|
+
"""
|
|
1774
|
+
Configuration for VM scanning
|
|
1775
|
+
"""
|
|
1776
|
+
return pulumi.get(self, "configuration")
|
|
1777
|
+
|
|
1778
|
+
@configuration.setter
|
|
1779
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
1780
|
+
pulumi.set(self, "configuration", value)
|
|
1781
|
+
|
|
1782
|
+
@property
|
|
1783
|
+
@pulumi.getter
|
|
1784
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
1785
|
+
"""
|
|
1786
|
+
Is VM scanning enabled
|
|
1787
|
+
"""
|
|
1788
|
+
return pulumi.get(self, "enabled")
|
|
1789
|
+
|
|
1790
|
+
@enabled.setter
|
|
1791
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
1792
|
+
pulumi.set(self, "enabled", value)
|
|
1793
|
+
|
|
1794
|
+
|
|
1795
|
+
@pulumi.input_type
|
|
1796
|
+
class DefenderForContainersAwsOfferingArgs:
|
|
1797
|
+
def __init__(__self__, *,
|
|
1798
|
+
offering_type: pulumi.Input[str],
|
|
1799
|
+
cloud_watch_to_kinesis: Optional[pulumi.Input['DefenderForContainersAwsOfferingCloudWatchToKinesisArgs']] = None,
|
|
1800
|
+
data_collection_external_id: Optional[pulumi.Input[str]] = None,
|
|
1801
|
+
enable_audit_logs_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
1802
|
+
enable_defender_agent_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
1803
|
+
enable_policy_agent_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
1804
|
+
kinesis_to_s3: Optional[pulumi.Input['DefenderForContainersAwsOfferingKinesisToS3Args']] = None,
|
|
1805
|
+
kube_audit_retention_time: Optional[pulumi.Input[float]] = None,
|
|
1806
|
+
kubernetes_data_collection: Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesDataCollectionArgs']] = None,
|
|
1807
|
+
kubernetes_service: Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesServiceArgs']] = None,
|
|
1808
|
+
mdc_containers_agentless_discovery_k8s: Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']] = None,
|
|
1809
|
+
mdc_containers_image_assessment: Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs']] = None,
|
|
1810
|
+
vm_scanners: Optional[pulumi.Input['DefenderForContainersAwsOfferingVmScannersArgs']] = None):
|
|
1811
|
+
"""
|
|
1812
|
+
The Defender for Containers AWS offering
|
|
1813
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
1814
|
+
Expected value is 'DefenderForContainersAws'.
|
|
1815
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingCloudWatchToKinesisArgs'] cloud_watch_to_kinesis: The cloudwatch to kinesis connection configuration
|
|
1816
|
+
:param pulumi.Input[str] data_collection_external_id: The externalId used by the data reader to prevent the confused deputy attack
|
|
1817
|
+
:param pulumi.Input[bool] enable_audit_logs_auto_provisioning: Is audit logs data collection enabled
|
|
1818
|
+
:param pulumi.Input[bool] enable_defender_agent_auto_provisioning: Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled
|
|
1819
|
+
:param pulumi.Input[bool] enable_policy_agent_auto_provisioning: Is Policy Kubernetes agent auto provisioning enabled
|
|
1820
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingKinesisToS3Args'] kinesis_to_s3: The kinesis to s3 connection configuration
|
|
1821
|
+
:param pulumi.Input[float] kube_audit_retention_time: The retention time in days of kube audit logs set on the CloudWatch log group
|
|
1822
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingKubernetesDataCollectionArgs'] kubernetes_data_collection: The kubernetes data collection connection configuration
|
|
1823
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingKubernetesServiceArgs'] kubernetes_service: The kubernetes service connection configuration
|
|
1824
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs'] mdc_containers_agentless_discovery_k8s: The Microsoft Defender container agentless discovery K8s configuration
|
|
1825
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs'] mdc_containers_image_assessment: The Microsoft Defender container image assessment configuration
|
|
1826
|
+
:param pulumi.Input['DefenderForContainersAwsOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for Container K8s VM host scanning configuration
|
|
1827
|
+
"""
|
|
1828
|
+
pulumi.set(__self__, "offering_type", 'DefenderForContainersAws')
|
|
1829
|
+
if cloud_watch_to_kinesis is not None:
|
|
1830
|
+
pulumi.set(__self__, "cloud_watch_to_kinesis", cloud_watch_to_kinesis)
|
|
1831
|
+
if data_collection_external_id is not None:
|
|
1832
|
+
pulumi.set(__self__, "data_collection_external_id", data_collection_external_id)
|
|
1833
|
+
if enable_audit_logs_auto_provisioning is not None:
|
|
1834
|
+
pulumi.set(__self__, "enable_audit_logs_auto_provisioning", enable_audit_logs_auto_provisioning)
|
|
1835
|
+
if enable_defender_agent_auto_provisioning is not None:
|
|
1836
|
+
pulumi.set(__self__, "enable_defender_agent_auto_provisioning", enable_defender_agent_auto_provisioning)
|
|
1837
|
+
if enable_policy_agent_auto_provisioning is not None:
|
|
1838
|
+
pulumi.set(__self__, "enable_policy_agent_auto_provisioning", enable_policy_agent_auto_provisioning)
|
|
1839
|
+
if kinesis_to_s3 is not None:
|
|
1840
|
+
pulumi.set(__self__, "kinesis_to_s3", kinesis_to_s3)
|
|
1841
|
+
if kube_audit_retention_time is not None:
|
|
1842
|
+
pulumi.set(__self__, "kube_audit_retention_time", kube_audit_retention_time)
|
|
1843
|
+
if kubernetes_data_collection is not None:
|
|
1844
|
+
pulumi.set(__self__, "kubernetes_data_collection", kubernetes_data_collection)
|
|
1845
|
+
if kubernetes_service is not None:
|
|
1846
|
+
pulumi.set(__self__, "kubernetes_service", kubernetes_service)
|
|
1847
|
+
if mdc_containers_agentless_discovery_k8s is not None:
|
|
1848
|
+
pulumi.set(__self__, "mdc_containers_agentless_discovery_k8s", mdc_containers_agentless_discovery_k8s)
|
|
1849
|
+
if mdc_containers_image_assessment is not None:
|
|
1850
|
+
pulumi.set(__self__, "mdc_containers_image_assessment", mdc_containers_image_assessment)
|
|
1851
|
+
if vm_scanners is not None:
|
|
1852
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
1853
|
+
|
|
1854
|
+
@property
|
|
1855
|
+
@pulumi.getter(name="offeringType")
|
|
1856
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
1857
|
+
"""
|
|
1858
|
+
The type of the security offering.
|
|
1859
|
+
Expected value is 'DefenderForContainersAws'.
|
|
1860
|
+
"""
|
|
1861
|
+
return pulumi.get(self, "offering_type")
|
|
1862
|
+
|
|
1863
|
+
@offering_type.setter
|
|
1864
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
1865
|
+
pulumi.set(self, "offering_type", value)
|
|
1866
|
+
|
|
1867
|
+
@property
|
|
1868
|
+
@pulumi.getter(name="cloudWatchToKinesis")
|
|
1869
|
+
def cloud_watch_to_kinesis(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingCloudWatchToKinesisArgs']]:
|
|
1870
|
+
"""
|
|
1871
|
+
The cloudwatch to kinesis connection configuration
|
|
1872
|
+
"""
|
|
1873
|
+
return pulumi.get(self, "cloud_watch_to_kinesis")
|
|
1874
|
+
|
|
1875
|
+
@cloud_watch_to_kinesis.setter
|
|
1876
|
+
def cloud_watch_to_kinesis(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingCloudWatchToKinesisArgs']]):
|
|
1877
|
+
pulumi.set(self, "cloud_watch_to_kinesis", value)
|
|
1878
|
+
|
|
1879
|
+
@property
|
|
1880
|
+
@pulumi.getter(name="dataCollectionExternalId")
|
|
1881
|
+
def data_collection_external_id(self) -> Optional[pulumi.Input[str]]:
|
|
1882
|
+
"""
|
|
1883
|
+
The externalId used by the data reader to prevent the confused deputy attack
|
|
1884
|
+
"""
|
|
1885
|
+
return pulumi.get(self, "data_collection_external_id")
|
|
1886
|
+
|
|
1887
|
+
@data_collection_external_id.setter
|
|
1888
|
+
def data_collection_external_id(self, value: Optional[pulumi.Input[str]]):
|
|
1889
|
+
pulumi.set(self, "data_collection_external_id", value)
|
|
1890
|
+
|
|
1891
|
+
@property
|
|
1892
|
+
@pulumi.getter(name="enableAuditLogsAutoProvisioning")
|
|
1893
|
+
def enable_audit_logs_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
1894
|
+
"""
|
|
1895
|
+
Is audit logs data collection enabled
|
|
1896
|
+
"""
|
|
1897
|
+
return pulumi.get(self, "enable_audit_logs_auto_provisioning")
|
|
1898
|
+
|
|
1899
|
+
@enable_audit_logs_auto_provisioning.setter
|
|
1900
|
+
def enable_audit_logs_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
1901
|
+
pulumi.set(self, "enable_audit_logs_auto_provisioning", value)
|
|
1902
|
+
|
|
1903
|
+
@property
|
|
1904
|
+
@pulumi.getter(name="enableDefenderAgentAutoProvisioning")
|
|
1905
|
+
def enable_defender_agent_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
1906
|
+
"""
|
|
1907
|
+
Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled
|
|
1908
|
+
"""
|
|
1909
|
+
return pulumi.get(self, "enable_defender_agent_auto_provisioning")
|
|
1910
|
+
|
|
1911
|
+
@enable_defender_agent_auto_provisioning.setter
|
|
1912
|
+
def enable_defender_agent_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
1913
|
+
pulumi.set(self, "enable_defender_agent_auto_provisioning", value)
|
|
1914
|
+
|
|
1915
|
+
@property
|
|
1916
|
+
@pulumi.getter(name="enablePolicyAgentAutoProvisioning")
|
|
1917
|
+
def enable_policy_agent_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
1918
|
+
"""
|
|
1919
|
+
Is Policy Kubernetes agent auto provisioning enabled
|
|
1920
|
+
"""
|
|
1921
|
+
return pulumi.get(self, "enable_policy_agent_auto_provisioning")
|
|
1922
|
+
|
|
1923
|
+
@enable_policy_agent_auto_provisioning.setter
|
|
1924
|
+
def enable_policy_agent_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
1925
|
+
pulumi.set(self, "enable_policy_agent_auto_provisioning", value)
|
|
1926
|
+
|
|
1927
|
+
@property
|
|
1928
|
+
@pulumi.getter(name="kinesisToS3")
|
|
1929
|
+
def kinesis_to_s3(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingKinesisToS3Args']]:
|
|
1930
|
+
"""
|
|
1931
|
+
The kinesis to s3 connection configuration
|
|
1932
|
+
"""
|
|
1933
|
+
return pulumi.get(self, "kinesis_to_s3")
|
|
1934
|
+
|
|
1935
|
+
@kinesis_to_s3.setter
|
|
1936
|
+
def kinesis_to_s3(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingKinesisToS3Args']]):
|
|
1937
|
+
pulumi.set(self, "kinesis_to_s3", value)
|
|
1938
|
+
|
|
1939
|
+
@property
|
|
1940
|
+
@pulumi.getter(name="kubeAuditRetentionTime")
|
|
1941
|
+
def kube_audit_retention_time(self) -> Optional[pulumi.Input[float]]:
|
|
1942
|
+
"""
|
|
1943
|
+
The retention time in days of kube audit logs set on the CloudWatch log group
|
|
1944
|
+
"""
|
|
1945
|
+
return pulumi.get(self, "kube_audit_retention_time")
|
|
1946
|
+
|
|
1947
|
+
@kube_audit_retention_time.setter
|
|
1948
|
+
def kube_audit_retention_time(self, value: Optional[pulumi.Input[float]]):
|
|
1949
|
+
pulumi.set(self, "kube_audit_retention_time", value)
|
|
1950
|
+
|
|
1951
|
+
@property
|
|
1952
|
+
@pulumi.getter(name="kubernetesDataCollection")
|
|
1953
|
+
def kubernetes_data_collection(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesDataCollectionArgs']]:
|
|
1954
|
+
"""
|
|
1955
|
+
The kubernetes data collection connection configuration
|
|
1956
|
+
"""
|
|
1957
|
+
return pulumi.get(self, "kubernetes_data_collection")
|
|
1958
|
+
|
|
1959
|
+
@kubernetes_data_collection.setter
|
|
1960
|
+
def kubernetes_data_collection(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesDataCollectionArgs']]):
|
|
1961
|
+
pulumi.set(self, "kubernetes_data_collection", value)
|
|
1962
|
+
|
|
1963
|
+
@property
|
|
1964
|
+
@pulumi.getter(name="kubernetesService")
|
|
1965
|
+
def kubernetes_service(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesServiceArgs']]:
|
|
1966
|
+
"""
|
|
1967
|
+
The kubernetes service connection configuration
|
|
1968
|
+
"""
|
|
1969
|
+
return pulumi.get(self, "kubernetes_service")
|
|
1970
|
+
|
|
1971
|
+
@kubernetes_service.setter
|
|
1972
|
+
def kubernetes_service(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingKubernetesServiceArgs']]):
|
|
1973
|
+
pulumi.set(self, "kubernetes_service", value)
|
|
1974
|
+
|
|
1975
|
+
@property
|
|
1976
|
+
@pulumi.getter(name="mdcContainersAgentlessDiscoveryK8s")
|
|
1977
|
+
def mdc_containers_agentless_discovery_k8s(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']]:
|
|
1978
|
+
"""
|
|
1979
|
+
The Microsoft Defender container agentless discovery K8s configuration
|
|
1980
|
+
"""
|
|
1981
|
+
return pulumi.get(self, "mdc_containers_agentless_discovery_k8s")
|
|
1982
|
+
|
|
1983
|
+
@mdc_containers_agentless_discovery_k8s.setter
|
|
1984
|
+
def mdc_containers_agentless_discovery_k8s(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersAgentlessDiscoveryK8sArgs']]):
|
|
1985
|
+
pulumi.set(self, "mdc_containers_agentless_discovery_k8s", value)
|
|
1986
|
+
|
|
1987
|
+
@property
|
|
1988
|
+
@pulumi.getter(name="mdcContainersImageAssessment")
|
|
1989
|
+
def mdc_containers_image_assessment(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs']]:
|
|
1990
|
+
"""
|
|
1991
|
+
The Microsoft Defender container image assessment configuration
|
|
1992
|
+
"""
|
|
1993
|
+
return pulumi.get(self, "mdc_containers_image_assessment")
|
|
1994
|
+
|
|
1995
|
+
@mdc_containers_image_assessment.setter
|
|
1996
|
+
def mdc_containers_image_assessment(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingMdcContainersImageAssessmentArgs']]):
|
|
1997
|
+
pulumi.set(self, "mdc_containers_image_assessment", value)
|
|
1998
|
+
|
|
1999
|
+
@property
|
|
2000
|
+
@pulumi.getter(name="vmScanners")
|
|
2001
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderForContainersAwsOfferingVmScannersArgs']]:
|
|
2002
|
+
"""
|
|
2003
|
+
The Microsoft Defender for Container K8s VM host scanning configuration
|
|
2004
|
+
"""
|
|
2005
|
+
return pulumi.get(self, "vm_scanners")
|
|
2006
|
+
|
|
2007
|
+
@vm_scanners.setter
|
|
2008
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderForContainersAwsOfferingVmScannersArgs']]):
|
|
2009
|
+
pulumi.set(self, "vm_scanners", value)
|
|
2010
|
+
|
|
2011
|
+
|
|
2012
|
+
@pulumi.input_type
|
|
2013
|
+
class DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs:
|
|
2014
|
+
def __init__(__self__, *,
|
|
2015
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2016
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2017
|
+
"""
|
|
2018
|
+
The native cloud connection configuration
|
|
2019
|
+
:param pulumi.Input[str] service_account_email_address: The data collection service account email address in GCP for this offering
|
|
2020
|
+
:param pulumi.Input[str] workload_identity_provider_id: The data collection GCP workload identity provider id for this offering
|
|
2021
|
+
"""
|
|
2022
|
+
if service_account_email_address is not None:
|
|
2023
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2024
|
+
if workload_identity_provider_id is not None:
|
|
2025
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2026
|
+
|
|
2027
|
+
@property
|
|
2028
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
2029
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
2030
|
+
"""
|
|
2031
|
+
The data collection service account email address in GCP for this offering
|
|
2032
|
+
"""
|
|
2033
|
+
return pulumi.get(self, "service_account_email_address")
|
|
2034
|
+
|
|
2035
|
+
@service_account_email_address.setter
|
|
2036
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
2037
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
2038
|
+
|
|
2039
|
+
@property
|
|
2040
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
2041
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
2042
|
+
"""
|
|
2043
|
+
The data collection GCP workload identity provider id for this offering
|
|
2044
|
+
"""
|
|
2045
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
2046
|
+
|
|
2047
|
+
@workload_identity_provider_id.setter
|
|
2048
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
2049
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
2050
|
+
|
|
2051
|
+
|
|
2052
|
+
@pulumi.input_type
|
|
2053
|
+
class DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs:
|
|
2054
|
+
def __init__(__self__, *,
|
|
2055
|
+
enabled: Optional[pulumi.Input[bool]] = None,
|
|
2056
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2057
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2058
|
+
"""
|
|
2059
|
+
The Microsoft Defender Container agentless discovery configuration
|
|
2060
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container agentless discovery enabled
|
|
2061
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
2062
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
2063
|
+
"""
|
|
2064
|
+
if enabled is not None:
|
|
2065
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2066
|
+
if service_account_email_address is not None:
|
|
2067
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2068
|
+
if workload_identity_provider_id is not None:
|
|
2069
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2070
|
+
|
|
2071
|
+
@property
|
|
2072
|
+
@pulumi.getter
|
|
2073
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2074
|
+
"""
|
|
2075
|
+
Is Microsoft Defender container agentless discovery enabled
|
|
2076
|
+
"""
|
|
2077
|
+
return pulumi.get(self, "enabled")
|
|
2078
|
+
|
|
2079
|
+
@enabled.setter
|
|
2080
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2081
|
+
pulumi.set(self, "enabled", value)
|
|
2082
|
+
|
|
2083
|
+
@property
|
|
2084
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
2085
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
2086
|
+
"""
|
|
2087
|
+
The service account email address in GCP for this feature
|
|
2088
|
+
"""
|
|
2089
|
+
return pulumi.get(self, "service_account_email_address")
|
|
2090
|
+
|
|
2091
|
+
@service_account_email_address.setter
|
|
2092
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
2093
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
2094
|
+
|
|
2095
|
+
@property
|
|
2096
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
2097
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
2098
|
+
"""
|
|
2099
|
+
The workload identity provider id in GCP for this feature
|
|
2100
|
+
"""
|
|
2101
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
2102
|
+
|
|
2103
|
+
@workload_identity_provider_id.setter
|
|
2104
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
2105
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
2106
|
+
|
|
2107
|
+
|
|
2108
|
+
@pulumi.input_type
|
|
2109
|
+
class DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs:
|
|
2110
|
+
def __init__(__self__, *,
|
|
2111
|
+
enabled: Optional[pulumi.Input[bool]] = None,
|
|
2112
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2113
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2114
|
+
"""
|
|
2115
|
+
The Microsoft Defender Container image assessment configuration
|
|
2116
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender container image assessment enabled
|
|
2117
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
2118
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
2119
|
+
"""
|
|
2120
|
+
if enabled is not None:
|
|
2121
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2122
|
+
if service_account_email_address is not None:
|
|
2123
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2124
|
+
if workload_identity_provider_id is not None:
|
|
2125
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2126
|
+
|
|
2127
|
+
@property
|
|
2128
|
+
@pulumi.getter
|
|
2129
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2130
|
+
"""
|
|
2131
|
+
Is Microsoft Defender container image assessment enabled
|
|
2132
|
+
"""
|
|
2133
|
+
return pulumi.get(self, "enabled")
|
|
2134
|
+
|
|
2135
|
+
@enabled.setter
|
|
2136
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2137
|
+
pulumi.set(self, "enabled", value)
|
|
2138
|
+
|
|
2139
|
+
@property
|
|
2140
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
2141
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
2142
|
+
"""
|
|
2143
|
+
The service account email address in GCP for this feature
|
|
2144
|
+
"""
|
|
2145
|
+
return pulumi.get(self, "service_account_email_address")
|
|
2146
|
+
|
|
2147
|
+
@service_account_email_address.setter
|
|
2148
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
2149
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
2150
|
+
|
|
2151
|
+
@property
|
|
2152
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
2153
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
2154
|
+
"""
|
|
2155
|
+
The workload identity provider id in GCP for this feature
|
|
2156
|
+
"""
|
|
2157
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
2158
|
+
|
|
2159
|
+
@workload_identity_provider_id.setter
|
|
2160
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
2161
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
2162
|
+
|
|
2163
|
+
|
|
2164
|
+
@pulumi.input_type
|
|
2165
|
+
class DefenderForContainersGcpOfferingNativeCloudConnectionArgs:
|
|
2166
|
+
def __init__(__self__, *,
|
|
2167
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2168
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2169
|
+
"""
|
|
2170
|
+
The native cloud connection configuration
|
|
2171
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this offering
|
|
2172
|
+
:param pulumi.Input[str] workload_identity_provider_id: The GCP workload identity provider id for this offering
|
|
2173
|
+
"""
|
|
2174
|
+
if service_account_email_address is not None:
|
|
2175
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2176
|
+
if workload_identity_provider_id is not None:
|
|
2177
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2178
|
+
|
|
2179
|
+
@property
|
|
2180
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
2181
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
2182
|
+
"""
|
|
2183
|
+
The service account email address in GCP for this offering
|
|
2184
|
+
"""
|
|
2185
|
+
return pulumi.get(self, "service_account_email_address")
|
|
2186
|
+
|
|
2187
|
+
@service_account_email_address.setter
|
|
2188
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
2189
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
2190
|
+
|
|
2191
|
+
@property
|
|
2192
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
2193
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
2194
|
+
"""
|
|
2195
|
+
The GCP workload identity provider id for this offering
|
|
2196
|
+
"""
|
|
2197
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
2198
|
+
|
|
2199
|
+
@workload_identity_provider_id.setter
|
|
2200
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
2201
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
2202
|
+
|
|
2203
|
+
|
|
2204
|
+
@pulumi.input_type
|
|
2205
|
+
class DefenderForContainersGcpOfferingVmScannersArgs:
|
|
2206
|
+
def __init__(__self__, *,
|
|
2207
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
2208
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2209
|
+
"""
|
|
2210
|
+
The Microsoft Defender for Container K8s VM host scanning configuration
|
|
2211
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
2212
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
2213
|
+
"""
|
|
2214
|
+
if configuration is not None:
|
|
2215
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2216
|
+
if enabled is not None:
|
|
2217
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2218
|
+
|
|
2219
|
+
@property
|
|
2220
|
+
@pulumi.getter
|
|
2221
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
2222
|
+
"""
|
|
2223
|
+
Configuration for VM scanning
|
|
2224
|
+
"""
|
|
2225
|
+
return pulumi.get(self, "configuration")
|
|
2226
|
+
|
|
2227
|
+
@configuration.setter
|
|
2228
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
2229
|
+
pulumi.set(self, "configuration", value)
|
|
2230
|
+
|
|
2231
|
+
@property
|
|
2232
|
+
@pulumi.getter
|
|
2233
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2234
|
+
"""
|
|
2235
|
+
Is VM scanning enabled
|
|
2236
|
+
"""
|
|
2237
|
+
return pulumi.get(self, "enabled")
|
|
2238
|
+
|
|
2239
|
+
@enabled.setter
|
|
2240
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2241
|
+
pulumi.set(self, "enabled", value)
|
|
2242
|
+
|
|
2243
|
+
|
|
2244
|
+
@pulumi.input_type
|
|
2245
|
+
class DefenderForContainersGcpOfferingArgs:
|
|
2246
|
+
def __init__(__self__, *,
|
|
2247
|
+
offering_type: pulumi.Input[str],
|
|
2248
|
+
data_pipeline_native_cloud_connection: Optional[pulumi.Input['DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs']] = None,
|
|
2249
|
+
enable_audit_logs_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
2250
|
+
enable_defender_agent_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
2251
|
+
enable_policy_agent_auto_provisioning: Optional[pulumi.Input[bool]] = None,
|
|
2252
|
+
mdc_containers_agentless_discovery_k8s: Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']] = None,
|
|
2253
|
+
mdc_containers_image_assessment: Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs']] = None,
|
|
2254
|
+
native_cloud_connection: Optional[pulumi.Input['DefenderForContainersGcpOfferingNativeCloudConnectionArgs']] = None,
|
|
2255
|
+
vm_scanners: Optional[pulumi.Input['DefenderForContainersGcpOfferingVmScannersArgs']] = None):
|
|
2256
|
+
"""
|
|
2257
|
+
The containers GCP offering
|
|
2258
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
2259
|
+
Expected value is 'DefenderForContainersGcp'.
|
|
2260
|
+
:param pulumi.Input['DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs'] data_pipeline_native_cloud_connection: The native cloud connection configuration
|
|
2261
|
+
:param pulumi.Input[bool] enable_audit_logs_auto_provisioning: Is audit logs data collection enabled
|
|
2262
|
+
:param pulumi.Input[bool] enable_defender_agent_auto_provisioning: Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled
|
|
2263
|
+
:param pulumi.Input[bool] enable_policy_agent_auto_provisioning: Is Policy Kubernetes agent auto provisioning enabled
|
|
2264
|
+
:param pulumi.Input['DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs'] mdc_containers_agentless_discovery_k8s: The Microsoft Defender Container agentless discovery configuration
|
|
2265
|
+
:param pulumi.Input['DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs'] mdc_containers_image_assessment: The Microsoft Defender Container image assessment configuration
|
|
2266
|
+
:param pulumi.Input['DefenderForContainersGcpOfferingNativeCloudConnectionArgs'] native_cloud_connection: The native cloud connection configuration
|
|
2267
|
+
:param pulumi.Input['DefenderForContainersGcpOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for Container K8s VM host scanning configuration
|
|
2268
|
+
"""
|
|
2269
|
+
pulumi.set(__self__, "offering_type", 'DefenderForContainersGcp')
|
|
2270
|
+
if data_pipeline_native_cloud_connection is not None:
|
|
2271
|
+
pulumi.set(__self__, "data_pipeline_native_cloud_connection", data_pipeline_native_cloud_connection)
|
|
2272
|
+
if enable_audit_logs_auto_provisioning is not None:
|
|
2273
|
+
pulumi.set(__self__, "enable_audit_logs_auto_provisioning", enable_audit_logs_auto_provisioning)
|
|
2274
|
+
if enable_defender_agent_auto_provisioning is not None:
|
|
2275
|
+
pulumi.set(__self__, "enable_defender_agent_auto_provisioning", enable_defender_agent_auto_provisioning)
|
|
2276
|
+
if enable_policy_agent_auto_provisioning is not None:
|
|
2277
|
+
pulumi.set(__self__, "enable_policy_agent_auto_provisioning", enable_policy_agent_auto_provisioning)
|
|
2278
|
+
if mdc_containers_agentless_discovery_k8s is not None:
|
|
2279
|
+
pulumi.set(__self__, "mdc_containers_agentless_discovery_k8s", mdc_containers_agentless_discovery_k8s)
|
|
2280
|
+
if mdc_containers_image_assessment is not None:
|
|
2281
|
+
pulumi.set(__self__, "mdc_containers_image_assessment", mdc_containers_image_assessment)
|
|
2282
|
+
if native_cloud_connection is not None:
|
|
2283
|
+
pulumi.set(__self__, "native_cloud_connection", native_cloud_connection)
|
|
2284
|
+
if vm_scanners is not None:
|
|
2285
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
2286
|
+
|
|
2287
|
+
@property
|
|
2288
|
+
@pulumi.getter(name="offeringType")
|
|
2289
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
2290
|
+
"""
|
|
2291
|
+
The type of the security offering.
|
|
2292
|
+
Expected value is 'DefenderForContainersGcp'.
|
|
2293
|
+
"""
|
|
2294
|
+
return pulumi.get(self, "offering_type")
|
|
2295
|
+
|
|
2296
|
+
@offering_type.setter
|
|
2297
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
2298
|
+
pulumi.set(self, "offering_type", value)
|
|
2299
|
+
|
|
2300
|
+
@property
|
|
2301
|
+
@pulumi.getter(name="dataPipelineNativeCloudConnection")
|
|
2302
|
+
def data_pipeline_native_cloud_connection(self) -> Optional[pulumi.Input['DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs']]:
|
|
2303
|
+
"""
|
|
2304
|
+
The native cloud connection configuration
|
|
2305
|
+
"""
|
|
2306
|
+
return pulumi.get(self, "data_pipeline_native_cloud_connection")
|
|
2307
|
+
|
|
2308
|
+
@data_pipeline_native_cloud_connection.setter
|
|
2309
|
+
def data_pipeline_native_cloud_connection(self, value: Optional[pulumi.Input['DefenderForContainersGcpOfferingDataPipelineNativeCloudConnectionArgs']]):
|
|
2310
|
+
pulumi.set(self, "data_pipeline_native_cloud_connection", value)
|
|
2311
|
+
|
|
2312
|
+
@property
|
|
2313
|
+
@pulumi.getter(name="enableAuditLogsAutoProvisioning")
|
|
2314
|
+
def enable_audit_logs_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
2315
|
+
"""
|
|
2316
|
+
Is audit logs data collection enabled
|
|
2317
|
+
"""
|
|
2318
|
+
return pulumi.get(self, "enable_audit_logs_auto_provisioning")
|
|
2319
|
+
|
|
2320
|
+
@enable_audit_logs_auto_provisioning.setter
|
|
2321
|
+
def enable_audit_logs_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
2322
|
+
pulumi.set(self, "enable_audit_logs_auto_provisioning", value)
|
|
2323
|
+
|
|
2324
|
+
@property
|
|
2325
|
+
@pulumi.getter(name="enableDefenderAgentAutoProvisioning")
|
|
2326
|
+
def enable_defender_agent_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
2327
|
+
"""
|
|
2328
|
+
Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled
|
|
2329
|
+
"""
|
|
2330
|
+
return pulumi.get(self, "enable_defender_agent_auto_provisioning")
|
|
2331
|
+
|
|
2332
|
+
@enable_defender_agent_auto_provisioning.setter
|
|
2333
|
+
def enable_defender_agent_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
2334
|
+
pulumi.set(self, "enable_defender_agent_auto_provisioning", value)
|
|
2335
|
+
|
|
2336
|
+
@property
|
|
2337
|
+
@pulumi.getter(name="enablePolicyAgentAutoProvisioning")
|
|
2338
|
+
def enable_policy_agent_auto_provisioning(self) -> Optional[pulumi.Input[bool]]:
|
|
2339
|
+
"""
|
|
2340
|
+
Is Policy Kubernetes agent auto provisioning enabled
|
|
2341
|
+
"""
|
|
2342
|
+
return pulumi.get(self, "enable_policy_agent_auto_provisioning")
|
|
2343
|
+
|
|
2344
|
+
@enable_policy_agent_auto_provisioning.setter
|
|
2345
|
+
def enable_policy_agent_auto_provisioning(self, value: Optional[pulumi.Input[bool]]):
|
|
2346
|
+
pulumi.set(self, "enable_policy_agent_auto_provisioning", value)
|
|
2347
|
+
|
|
2348
|
+
@property
|
|
2349
|
+
@pulumi.getter(name="mdcContainersAgentlessDiscoveryK8s")
|
|
2350
|
+
def mdc_containers_agentless_discovery_k8s(self) -> Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']]:
|
|
2351
|
+
"""
|
|
2352
|
+
The Microsoft Defender Container agentless discovery configuration
|
|
2353
|
+
"""
|
|
2354
|
+
return pulumi.get(self, "mdc_containers_agentless_discovery_k8s")
|
|
2355
|
+
|
|
2356
|
+
@mdc_containers_agentless_discovery_k8s.setter
|
|
2357
|
+
def mdc_containers_agentless_discovery_k8s(self, value: Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersAgentlessDiscoveryK8sArgs']]):
|
|
2358
|
+
pulumi.set(self, "mdc_containers_agentless_discovery_k8s", value)
|
|
2359
|
+
|
|
2360
|
+
@property
|
|
2361
|
+
@pulumi.getter(name="mdcContainersImageAssessment")
|
|
2362
|
+
def mdc_containers_image_assessment(self) -> Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs']]:
|
|
2363
|
+
"""
|
|
2364
|
+
The Microsoft Defender Container image assessment configuration
|
|
2365
|
+
"""
|
|
2366
|
+
return pulumi.get(self, "mdc_containers_image_assessment")
|
|
2367
|
+
|
|
2368
|
+
@mdc_containers_image_assessment.setter
|
|
2369
|
+
def mdc_containers_image_assessment(self, value: Optional[pulumi.Input['DefenderForContainersGcpOfferingMdcContainersImageAssessmentArgs']]):
|
|
2370
|
+
pulumi.set(self, "mdc_containers_image_assessment", value)
|
|
2371
|
+
|
|
2372
|
+
@property
|
|
2373
|
+
@pulumi.getter(name="nativeCloudConnection")
|
|
2374
|
+
def native_cloud_connection(self) -> Optional[pulumi.Input['DefenderForContainersGcpOfferingNativeCloudConnectionArgs']]:
|
|
2375
|
+
"""
|
|
2376
|
+
The native cloud connection configuration
|
|
2377
|
+
"""
|
|
2378
|
+
return pulumi.get(self, "native_cloud_connection")
|
|
2379
|
+
|
|
2380
|
+
@native_cloud_connection.setter
|
|
2381
|
+
def native_cloud_connection(self, value: Optional[pulumi.Input['DefenderForContainersGcpOfferingNativeCloudConnectionArgs']]):
|
|
2382
|
+
pulumi.set(self, "native_cloud_connection", value)
|
|
2383
|
+
|
|
2384
|
+
@property
|
|
2385
|
+
@pulumi.getter(name="vmScanners")
|
|
2386
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderForContainersGcpOfferingVmScannersArgs']]:
|
|
2387
|
+
"""
|
|
2388
|
+
The Microsoft Defender for Container K8s VM host scanning configuration
|
|
2389
|
+
"""
|
|
2390
|
+
return pulumi.get(self, "vm_scanners")
|
|
2391
|
+
|
|
2392
|
+
@vm_scanners.setter
|
|
2393
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderForContainersGcpOfferingVmScannersArgs']]):
|
|
2394
|
+
pulumi.set(self, "vm_scanners", value)
|
|
2395
|
+
|
|
2396
|
+
|
|
2397
|
+
@pulumi.input_type
|
|
2398
|
+
class DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs:
|
|
2399
|
+
def __init__(__self__, *,
|
|
2400
|
+
configuration: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']] = None,
|
|
2401
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2402
|
+
"""
|
|
2403
|
+
The ARC autoprovisioning configuration
|
|
2404
|
+
:param pulumi.Input['ArcAutoProvisioningConfigurationArgs'] configuration: Configuration for servers Arc auto provisioning for a given environment
|
|
2405
|
+
:param pulumi.Input[bool] enabled: Is arc auto provisioning enabled
|
|
2406
|
+
"""
|
|
2407
|
+
if configuration is not None:
|
|
2408
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2409
|
+
if enabled is not None:
|
|
2410
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2411
|
+
|
|
2412
|
+
@property
|
|
2413
|
+
@pulumi.getter
|
|
2414
|
+
def configuration(self) -> Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]:
|
|
2415
|
+
"""
|
|
2416
|
+
Configuration for servers Arc auto provisioning for a given environment
|
|
2417
|
+
"""
|
|
2418
|
+
return pulumi.get(self, "configuration")
|
|
2419
|
+
|
|
2420
|
+
@configuration.setter
|
|
2421
|
+
def configuration(self, value: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]):
|
|
2422
|
+
pulumi.set(self, "configuration", value)
|
|
2423
|
+
|
|
2424
|
+
@property
|
|
2425
|
+
@pulumi.getter
|
|
2426
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2427
|
+
"""
|
|
2428
|
+
Is arc auto provisioning enabled
|
|
2429
|
+
"""
|
|
2430
|
+
return pulumi.get(self, "enabled")
|
|
2431
|
+
|
|
2432
|
+
@enabled.setter
|
|
2433
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2434
|
+
pulumi.set(self, "enabled", value)
|
|
2435
|
+
|
|
2436
|
+
|
|
2437
|
+
@pulumi.input_type
|
|
2438
|
+
class DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs:
|
|
2439
|
+
def __init__(__self__, *,
|
|
2440
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2441
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2442
|
+
"""
|
|
2443
|
+
The native cloud connection configuration
|
|
2444
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this offering
|
|
2445
|
+
:param pulumi.Input[str] workload_identity_provider_id: The GCP workload identity provider id for this offering
|
|
2446
|
+
"""
|
|
2447
|
+
if service_account_email_address is not None:
|
|
2448
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2449
|
+
if workload_identity_provider_id is not None:
|
|
2450
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2451
|
+
|
|
2452
|
+
@property
|
|
2453
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
2454
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
2455
|
+
"""
|
|
2456
|
+
The service account email address in GCP for this offering
|
|
2457
|
+
"""
|
|
2458
|
+
return pulumi.get(self, "service_account_email_address")
|
|
2459
|
+
|
|
2460
|
+
@service_account_email_address.setter
|
|
2461
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
2462
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
2463
|
+
|
|
2464
|
+
@property
|
|
2465
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
2466
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
2467
|
+
"""
|
|
2468
|
+
The GCP workload identity provider id for this offering
|
|
2469
|
+
"""
|
|
2470
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
2471
|
+
|
|
2472
|
+
@workload_identity_provider_id.setter
|
|
2473
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
2474
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
2475
|
+
|
|
2476
|
+
|
|
2477
|
+
@pulumi.input_type
|
|
2478
|
+
class DefenderForDatabasesGcpOfferingArgs:
|
|
2479
|
+
def __init__(__self__, *,
|
|
2480
|
+
offering_type: pulumi.Input[str],
|
|
2481
|
+
arc_auto_provisioning: Optional[pulumi.Input['DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs']] = None,
|
|
2482
|
+
defender_for_databases_arc_auto_provisioning: Optional[pulumi.Input['DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs']] = None):
|
|
2483
|
+
"""
|
|
2484
|
+
The Defender for Databases GCP offering configurations
|
|
2485
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
2486
|
+
Expected value is 'DefenderForDatabasesGcp'.
|
|
2487
|
+
:param pulumi.Input['DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs'] arc_auto_provisioning: The ARC autoprovisioning configuration
|
|
2488
|
+
:param pulumi.Input['DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs'] defender_for_databases_arc_auto_provisioning: The native cloud connection configuration
|
|
2489
|
+
"""
|
|
2490
|
+
pulumi.set(__self__, "offering_type", 'DefenderForDatabasesGcp')
|
|
2491
|
+
if arc_auto_provisioning is not None:
|
|
2492
|
+
pulumi.set(__self__, "arc_auto_provisioning", arc_auto_provisioning)
|
|
2493
|
+
if defender_for_databases_arc_auto_provisioning is not None:
|
|
2494
|
+
pulumi.set(__self__, "defender_for_databases_arc_auto_provisioning", defender_for_databases_arc_auto_provisioning)
|
|
2495
|
+
|
|
2496
|
+
@property
|
|
2497
|
+
@pulumi.getter(name="offeringType")
|
|
2498
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
2499
|
+
"""
|
|
2500
|
+
The type of the security offering.
|
|
2501
|
+
Expected value is 'DefenderForDatabasesGcp'.
|
|
2502
|
+
"""
|
|
2503
|
+
return pulumi.get(self, "offering_type")
|
|
2504
|
+
|
|
2505
|
+
@offering_type.setter
|
|
2506
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
2507
|
+
pulumi.set(self, "offering_type", value)
|
|
2508
|
+
|
|
2509
|
+
@property
|
|
2510
|
+
@pulumi.getter(name="arcAutoProvisioning")
|
|
2511
|
+
def arc_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs']]:
|
|
2512
|
+
"""
|
|
2513
|
+
The ARC autoprovisioning configuration
|
|
2514
|
+
"""
|
|
2515
|
+
return pulumi.get(self, "arc_auto_provisioning")
|
|
2516
|
+
|
|
2517
|
+
@arc_auto_provisioning.setter
|
|
2518
|
+
def arc_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForDatabasesGcpOfferingArcAutoProvisioningArgs']]):
|
|
2519
|
+
pulumi.set(self, "arc_auto_provisioning", value)
|
|
2520
|
+
|
|
2521
|
+
@property
|
|
2522
|
+
@pulumi.getter(name="defenderForDatabasesArcAutoProvisioning")
|
|
2523
|
+
def defender_for_databases_arc_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs']]:
|
|
2524
|
+
"""
|
|
2525
|
+
The native cloud connection configuration
|
|
2526
|
+
"""
|
|
2527
|
+
return pulumi.get(self, "defender_for_databases_arc_auto_provisioning")
|
|
2528
|
+
|
|
2529
|
+
@defender_for_databases_arc_auto_provisioning.setter
|
|
2530
|
+
def defender_for_databases_arc_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioningArgs']]):
|
|
2531
|
+
pulumi.set(self, "defender_for_databases_arc_auto_provisioning", value)
|
|
2532
|
+
|
|
2533
|
+
|
|
2534
|
+
@pulumi.input_type
|
|
2535
|
+
class DefenderForServersAwsOfferingArcAutoProvisioningArgs:
|
|
2536
|
+
def __init__(__self__, *,
|
|
2537
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
2538
|
+
configuration: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']] = None,
|
|
2539
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2540
|
+
"""
|
|
2541
|
+
The ARC autoprovisioning configuration
|
|
2542
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
2543
|
+
:param pulumi.Input['ArcAutoProvisioningConfigurationArgs'] configuration: Configuration for servers Arc auto provisioning for a given environment
|
|
2544
|
+
:param pulumi.Input[bool] enabled: Is arc auto provisioning enabled
|
|
2545
|
+
"""
|
|
2546
|
+
if cloud_role_arn is not None:
|
|
2547
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
2548
|
+
if configuration is not None:
|
|
2549
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2550
|
+
if enabled is not None:
|
|
2551
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2552
|
+
|
|
2553
|
+
@property
|
|
2554
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
2555
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
2556
|
+
"""
|
|
2557
|
+
The cloud role ARN in AWS for this feature
|
|
2558
|
+
"""
|
|
2559
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
2560
|
+
|
|
2561
|
+
@cloud_role_arn.setter
|
|
2562
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
2563
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
2564
|
+
|
|
2565
|
+
@property
|
|
2566
|
+
@pulumi.getter
|
|
2567
|
+
def configuration(self) -> Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]:
|
|
2568
|
+
"""
|
|
2569
|
+
Configuration for servers Arc auto provisioning for a given environment
|
|
2570
|
+
"""
|
|
2571
|
+
return pulumi.get(self, "configuration")
|
|
2572
|
+
|
|
2573
|
+
@configuration.setter
|
|
2574
|
+
def configuration(self, value: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]):
|
|
2575
|
+
pulumi.set(self, "configuration", value)
|
|
2576
|
+
|
|
2577
|
+
@property
|
|
2578
|
+
@pulumi.getter
|
|
2579
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2580
|
+
"""
|
|
2581
|
+
Is arc auto provisioning enabled
|
|
2582
|
+
"""
|
|
2583
|
+
return pulumi.get(self, "enabled")
|
|
2584
|
+
|
|
2585
|
+
@enabled.setter
|
|
2586
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2587
|
+
pulumi.set(self, "enabled", value)
|
|
2588
|
+
|
|
2589
|
+
|
|
2590
|
+
@pulumi.input_type
|
|
2591
|
+
class DefenderForServersAwsOfferingConfigurationArgs:
|
|
2592
|
+
def __init__(__self__, *,
|
|
2593
|
+
type: Optional[pulumi.Input[Union[str, 'Type']]] = None):
|
|
2594
|
+
"""
|
|
2595
|
+
configuration for Vulnerability Assessment autoprovisioning
|
|
2596
|
+
:param pulumi.Input[Union[str, 'Type']] type: The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'
|
|
2597
|
+
"""
|
|
2598
|
+
if type is not None:
|
|
2599
|
+
pulumi.set(__self__, "type", type)
|
|
2600
|
+
|
|
2601
|
+
@property
|
|
2602
|
+
@pulumi.getter
|
|
2603
|
+
def type(self) -> Optional[pulumi.Input[Union[str, 'Type']]]:
|
|
2604
|
+
"""
|
|
2605
|
+
The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'
|
|
2606
|
+
"""
|
|
2607
|
+
return pulumi.get(self, "type")
|
|
2608
|
+
|
|
2609
|
+
@type.setter
|
|
2610
|
+
def type(self, value: Optional[pulumi.Input[Union[str, 'Type']]]):
|
|
2611
|
+
pulumi.set(self, "type", value)
|
|
2612
|
+
|
|
2613
|
+
|
|
2614
|
+
@pulumi.input_type
|
|
2615
|
+
class DefenderForServersAwsOfferingDefenderForServersArgs:
|
|
2616
|
+
def __init__(__self__, *,
|
|
2617
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None):
|
|
2618
|
+
"""
|
|
2619
|
+
The Defender for servers connection configuration
|
|
2620
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
2621
|
+
"""
|
|
2622
|
+
if cloud_role_arn is not None:
|
|
2623
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
2624
|
+
|
|
2625
|
+
@property
|
|
2626
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
2627
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
2628
|
+
"""
|
|
2629
|
+
The cloud role ARN in AWS for this feature
|
|
2630
|
+
"""
|
|
2631
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
2632
|
+
|
|
2633
|
+
@cloud_role_arn.setter
|
|
2634
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
2635
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
2636
|
+
|
|
2637
|
+
|
|
2638
|
+
@pulumi.input_type
|
|
2639
|
+
class DefenderForServersAwsOfferingMdeAutoProvisioningArgs:
|
|
2640
|
+
def __init__(__self__, *,
|
|
2641
|
+
configuration: Optional[Any] = None,
|
|
2642
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2643
|
+
"""
|
|
2644
|
+
The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
2645
|
+
:param Any configuration: configuration for Microsoft Defender for Endpoint autoprovisioning
|
|
2646
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender for Endpoint auto provisioning enabled
|
|
2647
|
+
"""
|
|
2648
|
+
if configuration is not None:
|
|
2649
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2650
|
+
if enabled is not None:
|
|
2651
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2652
|
+
|
|
2653
|
+
@property
|
|
2654
|
+
@pulumi.getter
|
|
2655
|
+
def configuration(self) -> Optional[Any]:
|
|
2656
|
+
"""
|
|
2657
|
+
configuration for Microsoft Defender for Endpoint autoprovisioning
|
|
2658
|
+
"""
|
|
2659
|
+
return pulumi.get(self, "configuration")
|
|
2660
|
+
|
|
2661
|
+
@configuration.setter
|
|
2662
|
+
def configuration(self, value: Optional[Any]):
|
|
2663
|
+
pulumi.set(self, "configuration", value)
|
|
2664
|
+
|
|
2665
|
+
@property
|
|
2666
|
+
@pulumi.getter
|
|
2667
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2668
|
+
"""
|
|
2669
|
+
Is Microsoft Defender for Endpoint auto provisioning enabled
|
|
2670
|
+
"""
|
|
2671
|
+
return pulumi.get(self, "enabled")
|
|
2672
|
+
|
|
2673
|
+
@enabled.setter
|
|
2674
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2675
|
+
pulumi.set(self, "enabled", value)
|
|
2676
|
+
|
|
2677
|
+
|
|
2678
|
+
@pulumi.input_type
|
|
2679
|
+
class DefenderForServersAwsOfferingSubPlanArgs:
|
|
2680
|
+
def __init__(__self__, *,
|
|
2681
|
+
type: Optional[pulumi.Input[Union[str, 'SubPlan']]] = None):
|
|
2682
|
+
"""
|
|
2683
|
+
configuration for the servers offering subPlan
|
|
2684
|
+
:param pulumi.Input[Union[str, 'SubPlan']] type: The available sub plans
|
|
2685
|
+
"""
|
|
2686
|
+
if type is not None:
|
|
2687
|
+
pulumi.set(__self__, "type", type)
|
|
2688
|
+
|
|
2689
|
+
@property
|
|
2690
|
+
@pulumi.getter
|
|
2691
|
+
def type(self) -> Optional[pulumi.Input[Union[str, 'SubPlan']]]:
|
|
2692
|
+
"""
|
|
2693
|
+
The available sub plans
|
|
2694
|
+
"""
|
|
2695
|
+
return pulumi.get(self, "type")
|
|
2696
|
+
|
|
2697
|
+
@type.setter
|
|
2698
|
+
def type(self, value: Optional[pulumi.Input[Union[str, 'SubPlan']]]):
|
|
2699
|
+
pulumi.set(self, "type", value)
|
|
2700
|
+
|
|
2701
|
+
|
|
2702
|
+
@pulumi.input_type
|
|
2703
|
+
class DefenderForServersAwsOfferingVaAutoProvisioningArgs:
|
|
2704
|
+
def __init__(__self__, *,
|
|
2705
|
+
configuration: Optional[pulumi.Input['DefenderForServersAwsOfferingConfigurationArgs']] = None,
|
|
2706
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2707
|
+
"""
|
|
2708
|
+
The Vulnerability Assessment autoprovisioning configuration
|
|
2709
|
+
:param pulumi.Input['DefenderForServersAwsOfferingConfigurationArgs'] configuration: configuration for Vulnerability Assessment autoprovisioning
|
|
2710
|
+
:param pulumi.Input[bool] enabled: Is Vulnerability Assessment auto provisioning enabled
|
|
2711
|
+
"""
|
|
2712
|
+
if configuration is not None:
|
|
2713
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2714
|
+
if enabled is not None:
|
|
2715
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2716
|
+
|
|
2717
|
+
@property
|
|
2718
|
+
@pulumi.getter
|
|
2719
|
+
def configuration(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingConfigurationArgs']]:
|
|
2720
|
+
"""
|
|
2721
|
+
configuration for Vulnerability Assessment autoprovisioning
|
|
2722
|
+
"""
|
|
2723
|
+
return pulumi.get(self, "configuration")
|
|
2724
|
+
|
|
2725
|
+
@configuration.setter
|
|
2726
|
+
def configuration(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingConfigurationArgs']]):
|
|
2727
|
+
pulumi.set(self, "configuration", value)
|
|
2728
|
+
|
|
2729
|
+
@property
|
|
2730
|
+
@pulumi.getter
|
|
2731
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2732
|
+
"""
|
|
2733
|
+
Is Vulnerability Assessment auto provisioning enabled
|
|
2734
|
+
"""
|
|
2735
|
+
return pulumi.get(self, "enabled")
|
|
2736
|
+
|
|
2737
|
+
@enabled.setter
|
|
2738
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2739
|
+
pulumi.set(self, "enabled", value)
|
|
2740
|
+
|
|
2741
|
+
|
|
2742
|
+
@pulumi.input_type
|
|
2743
|
+
class DefenderForServersAwsOfferingVmScannersArgs:
|
|
2744
|
+
def __init__(__self__, *,
|
|
2745
|
+
cloud_role_arn: Optional[pulumi.Input[str]] = None,
|
|
2746
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
2747
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2748
|
+
"""
|
|
2749
|
+
The Microsoft Defender for Server VM scanning configuration
|
|
2750
|
+
:param pulumi.Input[str] cloud_role_arn: The cloud role ARN in AWS for this feature
|
|
2751
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
2752
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
2753
|
+
"""
|
|
2754
|
+
if cloud_role_arn is not None:
|
|
2755
|
+
pulumi.set(__self__, "cloud_role_arn", cloud_role_arn)
|
|
2756
|
+
if configuration is not None:
|
|
2757
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2758
|
+
if enabled is not None:
|
|
2759
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2760
|
+
|
|
2761
|
+
@property
|
|
2762
|
+
@pulumi.getter(name="cloudRoleArn")
|
|
2763
|
+
def cloud_role_arn(self) -> Optional[pulumi.Input[str]]:
|
|
2764
|
+
"""
|
|
2765
|
+
The cloud role ARN in AWS for this feature
|
|
2766
|
+
"""
|
|
2767
|
+
return pulumi.get(self, "cloud_role_arn")
|
|
2768
|
+
|
|
2769
|
+
@cloud_role_arn.setter
|
|
2770
|
+
def cloud_role_arn(self, value: Optional[pulumi.Input[str]]):
|
|
2771
|
+
pulumi.set(self, "cloud_role_arn", value)
|
|
2772
|
+
|
|
2773
|
+
@property
|
|
2774
|
+
@pulumi.getter
|
|
2775
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
2776
|
+
"""
|
|
2777
|
+
Configuration for VM scanning
|
|
2778
|
+
"""
|
|
2779
|
+
return pulumi.get(self, "configuration")
|
|
2780
|
+
|
|
2781
|
+
@configuration.setter
|
|
2782
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
2783
|
+
pulumi.set(self, "configuration", value)
|
|
2784
|
+
|
|
2785
|
+
@property
|
|
2786
|
+
@pulumi.getter
|
|
2787
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2788
|
+
"""
|
|
2789
|
+
Is VM scanning enabled
|
|
2790
|
+
"""
|
|
2791
|
+
return pulumi.get(self, "enabled")
|
|
2792
|
+
|
|
2793
|
+
@enabled.setter
|
|
2794
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2795
|
+
pulumi.set(self, "enabled", value)
|
|
2796
|
+
|
|
2797
|
+
|
|
2798
|
+
@pulumi.input_type
|
|
2799
|
+
class DefenderForServersAwsOfferingArgs:
|
|
2800
|
+
def __init__(__self__, *,
|
|
2801
|
+
offering_type: pulumi.Input[str],
|
|
2802
|
+
arc_auto_provisioning: Optional[pulumi.Input['DefenderForServersAwsOfferingArcAutoProvisioningArgs']] = None,
|
|
2803
|
+
defender_for_servers: Optional[pulumi.Input['DefenderForServersAwsOfferingDefenderForServersArgs']] = None,
|
|
2804
|
+
mde_auto_provisioning: Optional[pulumi.Input['DefenderForServersAwsOfferingMdeAutoProvisioningArgs']] = None,
|
|
2805
|
+
sub_plan: Optional[pulumi.Input['DefenderForServersAwsOfferingSubPlanArgs']] = None,
|
|
2806
|
+
va_auto_provisioning: Optional[pulumi.Input['DefenderForServersAwsOfferingVaAutoProvisioningArgs']] = None,
|
|
2807
|
+
vm_scanners: Optional[pulumi.Input['DefenderForServersAwsOfferingVmScannersArgs']] = None):
|
|
2808
|
+
"""
|
|
2809
|
+
The Defender for Servers AWS offering
|
|
2810
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
2811
|
+
Expected value is 'DefenderForServersAws'.
|
|
2812
|
+
:param pulumi.Input['DefenderForServersAwsOfferingArcAutoProvisioningArgs'] arc_auto_provisioning: The ARC autoprovisioning configuration
|
|
2813
|
+
:param pulumi.Input['DefenderForServersAwsOfferingDefenderForServersArgs'] defender_for_servers: The Defender for servers connection configuration
|
|
2814
|
+
:param pulumi.Input['DefenderForServersAwsOfferingMdeAutoProvisioningArgs'] mde_auto_provisioning: The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
2815
|
+
:param pulumi.Input['DefenderForServersAwsOfferingSubPlanArgs'] sub_plan: configuration for the servers offering subPlan
|
|
2816
|
+
:param pulumi.Input['DefenderForServersAwsOfferingVaAutoProvisioningArgs'] va_auto_provisioning: The Vulnerability Assessment autoprovisioning configuration
|
|
2817
|
+
:param pulumi.Input['DefenderForServersAwsOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for Server VM scanning configuration
|
|
2818
|
+
"""
|
|
2819
|
+
pulumi.set(__self__, "offering_type", 'DefenderForServersAws')
|
|
2820
|
+
if arc_auto_provisioning is not None:
|
|
2821
|
+
pulumi.set(__self__, "arc_auto_provisioning", arc_auto_provisioning)
|
|
2822
|
+
if defender_for_servers is not None:
|
|
2823
|
+
pulumi.set(__self__, "defender_for_servers", defender_for_servers)
|
|
2824
|
+
if mde_auto_provisioning is not None:
|
|
2825
|
+
pulumi.set(__self__, "mde_auto_provisioning", mde_auto_provisioning)
|
|
2826
|
+
if sub_plan is not None:
|
|
2827
|
+
pulumi.set(__self__, "sub_plan", sub_plan)
|
|
2828
|
+
if va_auto_provisioning is not None:
|
|
2829
|
+
pulumi.set(__self__, "va_auto_provisioning", va_auto_provisioning)
|
|
2830
|
+
if vm_scanners is not None:
|
|
2831
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
2832
|
+
|
|
2833
|
+
@property
|
|
2834
|
+
@pulumi.getter(name="offeringType")
|
|
2835
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
2836
|
+
"""
|
|
2837
|
+
The type of the security offering.
|
|
2838
|
+
Expected value is 'DefenderForServersAws'.
|
|
2839
|
+
"""
|
|
2840
|
+
return pulumi.get(self, "offering_type")
|
|
2841
|
+
|
|
2842
|
+
@offering_type.setter
|
|
2843
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
2844
|
+
pulumi.set(self, "offering_type", value)
|
|
2845
|
+
|
|
2846
|
+
@property
|
|
2847
|
+
@pulumi.getter(name="arcAutoProvisioning")
|
|
2848
|
+
def arc_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingArcAutoProvisioningArgs']]:
|
|
2849
|
+
"""
|
|
2850
|
+
The ARC autoprovisioning configuration
|
|
2851
|
+
"""
|
|
2852
|
+
return pulumi.get(self, "arc_auto_provisioning")
|
|
2853
|
+
|
|
2854
|
+
@arc_auto_provisioning.setter
|
|
2855
|
+
def arc_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingArcAutoProvisioningArgs']]):
|
|
2856
|
+
pulumi.set(self, "arc_auto_provisioning", value)
|
|
2857
|
+
|
|
2858
|
+
@property
|
|
2859
|
+
@pulumi.getter(name="defenderForServers")
|
|
2860
|
+
def defender_for_servers(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingDefenderForServersArgs']]:
|
|
2861
|
+
"""
|
|
2862
|
+
The Defender for servers connection configuration
|
|
2863
|
+
"""
|
|
2864
|
+
return pulumi.get(self, "defender_for_servers")
|
|
2865
|
+
|
|
2866
|
+
@defender_for_servers.setter
|
|
2867
|
+
def defender_for_servers(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingDefenderForServersArgs']]):
|
|
2868
|
+
pulumi.set(self, "defender_for_servers", value)
|
|
2869
|
+
|
|
2870
|
+
@property
|
|
2871
|
+
@pulumi.getter(name="mdeAutoProvisioning")
|
|
2872
|
+
def mde_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingMdeAutoProvisioningArgs']]:
|
|
2873
|
+
"""
|
|
2874
|
+
The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
2875
|
+
"""
|
|
2876
|
+
return pulumi.get(self, "mde_auto_provisioning")
|
|
2877
|
+
|
|
2878
|
+
@mde_auto_provisioning.setter
|
|
2879
|
+
def mde_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingMdeAutoProvisioningArgs']]):
|
|
2880
|
+
pulumi.set(self, "mde_auto_provisioning", value)
|
|
2881
|
+
|
|
2882
|
+
@property
|
|
2883
|
+
@pulumi.getter(name="subPlan")
|
|
2884
|
+
def sub_plan(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingSubPlanArgs']]:
|
|
2885
|
+
"""
|
|
2886
|
+
configuration for the servers offering subPlan
|
|
2887
|
+
"""
|
|
2888
|
+
return pulumi.get(self, "sub_plan")
|
|
2889
|
+
|
|
2890
|
+
@sub_plan.setter
|
|
2891
|
+
def sub_plan(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingSubPlanArgs']]):
|
|
2892
|
+
pulumi.set(self, "sub_plan", value)
|
|
2893
|
+
|
|
2894
|
+
@property
|
|
2895
|
+
@pulumi.getter(name="vaAutoProvisioning")
|
|
2896
|
+
def va_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingVaAutoProvisioningArgs']]:
|
|
2897
|
+
"""
|
|
2898
|
+
The Vulnerability Assessment autoprovisioning configuration
|
|
2899
|
+
"""
|
|
2900
|
+
return pulumi.get(self, "va_auto_provisioning")
|
|
2901
|
+
|
|
2902
|
+
@va_auto_provisioning.setter
|
|
2903
|
+
def va_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingVaAutoProvisioningArgs']]):
|
|
2904
|
+
pulumi.set(self, "va_auto_provisioning", value)
|
|
2905
|
+
|
|
2906
|
+
@property
|
|
2907
|
+
@pulumi.getter(name="vmScanners")
|
|
2908
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderForServersAwsOfferingVmScannersArgs']]:
|
|
2909
|
+
"""
|
|
2910
|
+
The Microsoft Defender for Server VM scanning configuration
|
|
2911
|
+
"""
|
|
2912
|
+
return pulumi.get(self, "vm_scanners")
|
|
2913
|
+
|
|
2914
|
+
@vm_scanners.setter
|
|
2915
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderForServersAwsOfferingVmScannersArgs']]):
|
|
2916
|
+
pulumi.set(self, "vm_scanners", value)
|
|
2917
|
+
|
|
2918
|
+
|
|
2919
|
+
@pulumi.input_type
|
|
2920
|
+
class DefenderForServersGcpOfferingArcAutoProvisioningArgs:
|
|
2921
|
+
def __init__(__self__, *,
|
|
2922
|
+
configuration: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']] = None,
|
|
2923
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
2924
|
+
"""
|
|
2925
|
+
The ARC autoprovisioning configuration
|
|
2926
|
+
:param pulumi.Input['ArcAutoProvisioningConfigurationArgs'] configuration: Configuration for servers Arc auto provisioning for a given environment
|
|
2927
|
+
:param pulumi.Input[bool] enabled: Is arc auto provisioning enabled
|
|
2928
|
+
"""
|
|
2929
|
+
if configuration is not None:
|
|
2930
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
2931
|
+
if enabled is not None:
|
|
2932
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
2933
|
+
|
|
2934
|
+
@property
|
|
2935
|
+
@pulumi.getter
|
|
2936
|
+
def configuration(self) -> Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]:
|
|
2937
|
+
"""
|
|
2938
|
+
Configuration for servers Arc auto provisioning for a given environment
|
|
2939
|
+
"""
|
|
2940
|
+
return pulumi.get(self, "configuration")
|
|
2941
|
+
|
|
2942
|
+
@configuration.setter
|
|
2943
|
+
def configuration(self, value: Optional[pulumi.Input['ArcAutoProvisioningConfigurationArgs']]):
|
|
2944
|
+
pulumi.set(self, "configuration", value)
|
|
2945
|
+
|
|
2946
|
+
@property
|
|
2947
|
+
@pulumi.getter
|
|
2948
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
2949
|
+
"""
|
|
2950
|
+
Is arc auto provisioning enabled
|
|
2951
|
+
"""
|
|
2952
|
+
return pulumi.get(self, "enabled")
|
|
2953
|
+
|
|
2954
|
+
@enabled.setter
|
|
2955
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
2956
|
+
pulumi.set(self, "enabled", value)
|
|
2957
|
+
|
|
2958
|
+
|
|
2959
|
+
@pulumi.input_type
|
|
2960
|
+
class DefenderForServersGcpOfferingConfigurationArgs:
|
|
2961
|
+
def __init__(__self__, *,
|
|
2962
|
+
type: Optional[pulumi.Input[Union[str, 'Type']]] = None):
|
|
2963
|
+
"""
|
|
2964
|
+
configuration for Vulnerability Assessment autoprovisioning
|
|
2965
|
+
:param pulumi.Input[Union[str, 'Type']] type: The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'
|
|
2966
|
+
"""
|
|
2967
|
+
if type is not None:
|
|
2968
|
+
pulumi.set(__self__, "type", type)
|
|
2969
|
+
|
|
2970
|
+
@property
|
|
2971
|
+
@pulumi.getter
|
|
2972
|
+
def type(self) -> Optional[pulumi.Input[Union[str, 'Type']]]:
|
|
2973
|
+
"""
|
|
2974
|
+
The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'
|
|
2975
|
+
"""
|
|
2976
|
+
return pulumi.get(self, "type")
|
|
2977
|
+
|
|
2978
|
+
@type.setter
|
|
2979
|
+
def type(self, value: Optional[pulumi.Input[Union[str, 'Type']]]):
|
|
2980
|
+
pulumi.set(self, "type", value)
|
|
2981
|
+
|
|
2982
|
+
|
|
2983
|
+
@pulumi.input_type
|
|
2984
|
+
class DefenderForServersGcpOfferingDefenderForServersArgs:
|
|
2985
|
+
def __init__(__self__, *,
|
|
2986
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
2987
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
2988
|
+
"""
|
|
2989
|
+
The Defender for servers connection configuration
|
|
2990
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address in GCP for this feature
|
|
2991
|
+
:param pulumi.Input[str] workload_identity_provider_id: The workload identity provider id in GCP for this feature
|
|
2992
|
+
"""
|
|
2993
|
+
if service_account_email_address is not None:
|
|
2994
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
2995
|
+
if workload_identity_provider_id is not None:
|
|
2996
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
2997
|
+
|
|
2998
|
+
@property
|
|
2999
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
3000
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
3001
|
+
"""
|
|
3002
|
+
The service account email address in GCP for this feature
|
|
3003
|
+
"""
|
|
3004
|
+
return pulumi.get(self, "service_account_email_address")
|
|
3005
|
+
|
|
3006
|
+
@service_account_email_address.setter
|
|
3007
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
3008
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
3009
|
+
|
|
3010
|
+
@property
|
|
3011
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
3012
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
3013
|
+
"""
|
|
3014
|
+
The workload identity provider id in GCP for this feature
|
|
3015
|
+
"""
|
|
3016
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
3017
|
+
|
|
3018
|
+
@workload_identity_provider_id.setter
|
|
3019
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
3020
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
3021
|
+
|
|
3022
|
+
|
|
3023
|
+
@pulumi.input_type
|
|
3024
|
+
class DefenderForServersGcpOfferingMdeAutoProvisioningArgs:
|
|
3025
|
+
def __init__(__self__, *,
|
|
3026
|
+
configuration: Optional[Any] = None,
|
|
3027
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
3028
|
+
"""
|
|
3029
|
+
The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
3030
|
+
:param Any configuration: configuration for Microsoft Defender for Endpoint autoprovisioning
|
|
3031
|
+
:param pulumi.Input[bool] enabled: Is Microsoft Defender for Endpoint auto provisioning enabled
|
|
3032
|
+
"""
|
|
3033
|
+
if configuration is not None:
|
|
3034
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
3035
|
+
if enabled is not None:
|
|
3036
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
3037
|
+
|
|
3038
|
+
@property
|
|
3039
|
+
@pulumi.getter
|
|
3040
|
+
def configuration(self) -> Optional[Any]:
|
|
3041
|
+
"""
|
|
3042
|
+
configuration for Microsoft Defender for Endpoint autoprovisioning
|
|
3043
|
+
"""
|
|
3044
|
+
return pulumi.get(self, "configuration")
|
|
3045
|
+
|
|
3046
|
+
@configuration.setter
|
|
3047
|
+
def configuration(self, value: Optional[Any]):
|
|
3048
|
+
pulumi.set(self, "configuration", value)
|
|
3049
|
+
|
|
3050
|
+
@property
|
|
3051
|
+
@pulumi.getter
|
|
3052
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
3053
|
+
"""
|
|
3054
|
+
Is Microsoft Defender for Endpoint auto provisioning enabled
|
|
3055
|
+
"""
|
|
3056
|
+
return pulumi.get(self, "enabled")
|
|
3057
|
+
|
|
3058
|
+
@enabled.setter
|
|
3059
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
3060
|
+
pulumi.set(self, "enabled", value)
|
|
3061
|
+
|
|
3062
|
+
|
|
3063
|
+
@pulumi.input_type
|
|
3064
|
+
class DefenderForServersGcpOfferingSubPlanArgs:
|
|
3065
|
+
def __init__(__self__, *,
|
|
3066
|
+
type: Optional[pulumi.Input[Union[str, 'SubPlan']]] = None):
|
|
3067
|
+
"""
|
|
3068
|
+
configuration for the servers offering subPlan
|
|
3069
|
+
:param pulumi.Input[Union[str, 'SubPlan']] type: The available sub plans
|
|
3070
|
+
"""
|
|
3071
|
+
if type is not None:
|
|
3072
|
+
pulumi.set(__self__, "type", type)
|
|
3073
|
+
|
|
3074
|
+
@property
|
|
3075
|
+
@pulumi.getter
|
|
3076
|
+
def type(self) -> Optional[pulumi.Input[Union[str, 'SubPlan']]]:
|
|
3077
|
+
"""
|
|
3078
|
+
The available sub plans
|
|
3079
|
+
"""
|
|
3080
|
+
return pulumi.get(self, "type")
|
|
3081
|
+
|
|
3082
|
+
@type.setter
|
|
3083
|
+
def type(self, value: Optional[pulumi.Input[Union[str, 'SubPlan']]]):
|
|
3084
|
+
pulumi.set(self, "type", value)
|
|
3085
|
+
|
|
3086
|
+
|
|
3087
|
+
@pulumi.input_type
|
|
3088
|
+
class DefenderForServersGcpOfferingVaAutoProvisioningArgs:
|
|
3089
|
+
def __init__(__self__, *,
|
|
3090
|
+
configuration: Optional[pulumi.Input['DefenderForServersGcpOfferingConfigurationArgs']] = None,
|
|
3091
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
3092
|
+
"""
|
|
3093
|
+
The Vulnerability Assessment autoprovisioning configuration
|
|
3094
|
+
:param pulumi.Input['DefenderForServersGcpOfferingConfigurationArgs'] configuration: configuration for Vulnerability Assessment autoprovisioning
|
|
3095
|
+
:param pulumi.Input[bool] enabled: Is Vulnerability Assessment auto provisioning enabled
|
|
3096
|
+
"""
|
|
3097
|
+
if configuration is not None:
|
|
3098
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
3099
|
+
if enabled is not None:
|
|
3100
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
3101
|
+
|
|
3102
|
+
@property
|
|
3103
|
+
@pulumi.getter
|
|
3104
|
+
def configuration(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingConfigurationArgs']]:
|
|
3105
|
+
"""
|
|
3106
|
+
configuration for Vulnerability Assessment autoprovisioning
|
|
3107
|
+
"""
|
|
3108
|
+
return pulumi.get(self, "configuration")
|
|
3109
|
+
|
|
3110
|
+
@configuration.setter
|
|
3111
|
+
def configuration(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingConfigurationArgs']]):
|
|
3112
|
+
pulumi.set(self, "configuration", value)
|
|
3113
|
+
|
|
3114
|
+
@property
|
|
3115
|
+
@pulumi.getter
|
|
3116
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
3117
|
+
"""
|
|
3118
|
+
Is Vulnerability Assessment auto provisioning enabled
|
|
3119
|
+
"""
|
|
3120
|
+
return pulumi.get(self, "enabled")
|
|
3121
|
+
|
|
3122
|
+
@enabled.setter
|
|
3123
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
3124
|
+
pulumi.set(self, "enabled", value)
|
|
3125
|
+
|
|
3126
|
+
|
|
3127
|
+
@pulumi.input_type
|
|
3128
|
+
class DefenderForServersGcpOfferingVmScannersArgs:
|
|
3129
|
+
def __init__(__self__, *,
|
|
3130
|
+
configuration: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']] = None,
|
|
3131
|
+
enabled: Optional[pulumi.Input[bool]] = None):
|
|
3132
|
+
"""
|
|
3133
|
+
The Microsoft Defender for Server VM scanning configuration
|
|
3134
|
+
:param pulumi.Input['VmScannersBaseConfigurationArgs'] configuration: Configuration for VM scanning
|
|
3135
|
+
:param pulumi.Input[bool] enabled: Is VM scanning enabled
|
|
3136
|
+
"""
|
|
3137
|
+
if configuration is not None:
|
|
3138
|
+
pulumi.set(__self__, "configuration", configuration)
|
|
3139
|
+
if enabled is not None:
|
|
3140
|
+
pulumi.set(__self__, "enabled", enabled)
|
|
3141
|
+
|
|
3142
|
+
@property
|
|
3143
|
+
@pulumi.getter
|
|
3144
|
+
def configuration(self) -> Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]:
|
|
3145
|
+
"""
|
|
3146
|
+
Configuration for VM scanning
|
|
3147
|
+
"""
|
|
3148
|
+
return pulumi.get(self, "configuration")
|
|
3149
|
+
|
|
3150
|
+
@configuration.setter
|
|
3151
|
+
def configuration(self, value: Optional[pulumi.Input['VmScannersBaseConfigurationArgs']]):
|
|
3152
|
+
pulumi.set(self, "configuration", value)
|
|
3153
|
+
|
|
3154
|
+
@property
|
|
3155
|
+
@pulumi.getter
|
|
3156
|
+
def enabled(self) -> Optional[pulumi.Input[bool]]:
|
|
3157
|
+
"""
|
|
3158
|
+
Is VM scanning enabled
|
|
3159
|
+
"""
|
|
3160
|
+
return pulumi.get(self, "enabled")
|
|
3161
|
+
|
|
3162
|
+
@enabled.setter
|
|
3163
|
+
def enabled(self, value: Optional[pulumi.Input[bool]]):
|
|
3164
|
+
pulumi.set(self, "enabled", value)
|
|
3165
|
+
|
|
3166
|
+
|
|
3167
|
+
@pulumi.input_type
|
|
3168
|
+
class DefenderForServersGcpOfferingArgs:
|
|
3169
|
+
def __init__(__self__, *,
|
|
3170
|
+
offering_type: pulumi.Input[str],
|
|
3171
|
+
arc_auto_provisioning: Optional[pulumi.Input['DefenderForServersGcpOfferingArcAutoProvisioningArgs']] = None,
|
|
3172
|
+
defender_for_servers: Optional[pulumi.Input['DefenderForServersGcpOfferingDefenderForServersArgs']] = None,
|
|
3173
|
+
mde_auto_provisioning: Optional[pulumi.Input['DefenderForServersGcpOfferingMdeAutoProvisioningArgs']] = None,
|
|
3174
|
+
sub_plan: Optional[pulumi.Input['DefenderForServersGcpOfferingSubPlanArgs']] = None,
|
|
3175
|
+
va_auto_provisioning: Optional[pulumi.Input['DefenderForServersGcpOfferingVaAutoProvisioningArgs']] = None,
|
|
3176
|
+
vm_scanners: Optional[pulumi.Input['DefenderForServersGcpOfferingVmScannersArgs']] = None):
|
|
3177
|
+
"""
|
|
3178
|
+
The Defender for Servers GCP offering configurations
|
|
3179
|
+
:param pulumi.Input[str] offering_type: The type of the security offering.
|
|
3180
|
+
Expected value is 'DefenderForServersGcp'.
|
|
3181
|
+
:param pulumi.Input['DefenderForServersGcpOfferingArcAutoProvisioningArgs'] arc_auto_provisioning: The ARC autoprovisioning configuration
|
|
3182
|
+
:param pulumi.Input['DefenderForServersGcpOfferingDefenderForServersArgs'] defender_for_servers: The Defender for servers connection configuration
|
|
3183
|
+
:param pulumi.Input['DefenderForServersGcpOfferingMdeAutoProvisioningArgs'] mde_auto_provisioning: The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
3184
|
+
:param pulumi.Input['DefenderForServersGcpOfferingSubPlanArgs'] sub_plan: configuration for the servers offering subPlan
|
|
3185
|
+
:param pulumi.Input['DefenderForServersGcpOfferingVaAutoProvisioningArgs'] va_auto_provisioning: The Vulnerability Assessment autoprovisioning configuration
|
|
3186
|
+
:param pulumi.Input['DefenderForServersGcpOfferingVmScannersArgs'] vm_scanners: The Microsoft Defender for Server VM scanning configuration
|
|
3187
|
+
"""
|
|
3188
|
+
pulumi.set(__self__, "offering_type", 'DefenderForServersGcp')
|
|
3189
|
+
if arc_auto_provisioning is not None:
|
|
3190
|
+
pulumi.set(__self__, "arc_auto_provisioning", arc_auto_provisioning)
|
|
3191
|
+
if defender_for_servers is not None:
|
|
3192
|
+
pulumi.set(__self__, "defender_for_servers", defender_for_servers)
|
|
3193
|
+
if mde_auto_provisioning is not None:
|
|
3194
|
+
pulumi.set(__self__, "mde_auto_provisioning", mde_auto_provisioning)
|
|
3195
|
+
if sub_plan is not None:
|
|
3196
|
+
pulumi.set(__self__, "sub_plan", sub_plan)
|
|
3197
|
+
if va_auto_provisioning is not None:
|
|
3198
|
+
pulumi.set(__self__, "va_auto_provisioning", va_auto_provisioning)
|
|
3199
|
+
if vm_scanners is not None:
|
|
3200
|
+
pulumi.set(__self__, "vm_scanners", vm_scanners)
|
|
3201
|
+
|
|
3202
|
+
@property
|
|
3203
|
+
@pulumi.getter(name="offeringType")
|
|
3204
|
+
def offering_type(self) -> pulumi.Input[str]:
|
|
3205
|
+
"""
|
|
3206
|
+
The type of the security offering.
|
|
3207
|
+
Expected value is 'DefenderForServersGcp'.
|
|
3208
|
+
"""
|
|
3209
|
+
return pulumi.get(self, "offering_type")
|
|
3210
|
+
|
|
3211
|
+
@offering_type.setter
|
|
3212
|
+
def offering_type(self, value: pulumi.Input[str]):
|
|
3213
|
+
pulumi.set(self, "offering_type", value)
|
|
3214
|
+
|
|
3215
|
+
@property
|
|
3216
|
+
@pulumi.getter(name="arcAutoProvisioning")
|
|
3217
|
+
def arc_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingArcAutoProvisioningArgs']]:
|
|
3218
|
+
"""
|
|
3219
|
+
The ARC autoprovisioning configuration
|
|
3220
|
+
"""
|
|
3221
|
+
return pulumi.get(self, "arc_auto_provisioning")
|
|
3222
|
+
|
|
3223
|
+
@arc_auto_provisioning.setter
|
|
3224
|
+
def arc_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingArcAutoProvisioningArgs']]):
|
|
3225
|
+
pulumi.set(self, "arc_auto_provisioning", value)
|
|
3226
|
+
|
|
3227
|
+
@property
|
|
3228
|
+
@pulumi.getter(name="defenderForServers")
|
|
3229
|
+
def defender_for_servers(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingDefenderForServersArgs']]:
|
|
3230
|
+
"""
|
|
3231
|
+
The Defender for servers connection configuration
|
|
3232
|
+
"""
|
|
3233
|
+
return pulumi.get(self, "defender_for_servers")
|
|
3234
|
+
|
|
3235
|
+
@defender_for_servers.setter
|
|
3236
|
+
def defender_for_servers(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingDefenderForServersArgs']]):
|
|
3237
|
+
pulumi.set(self, "defender_for_servers", value)
|
|
3238
|
+
|
|
3239
|
+
@property
|
|
3240
|
+
@pulumi.getter(name="mdeAutoProvisioning")
|
|
3241
|
+
def mde_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingMdeAutoProvisioningArgs']]:
|
|
3242
|
+
"""
|
|
3243
|
+
The Microsoft Defender for Endpoint autoprovisioning configuration
|
|
3244
|
+
"""
|
|
3245
|
+
return pulumi.get(self, "mde_auto_provisioning")
|
|
3246
|
+
|
|
3247
|
+
@mde_auto_provisioning.setter
|
|
3248
|
+
def mde_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingMdeAutoProvisioningArgs']]):
|
|
3249
|
+
pulumi.set(self, "mde_auto_provisioning", value)
|
|
3250
|
+
|
|
3251
|
+
@property
|
|
3252
|
+
@pulumi.getter(name="subPlan")
|
|
3253
|
+
def sub_plan(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingSubPlanArgs']]:
|
|
3254
|
+
"""
|
|
3255
|
+
configuration for the servers offering subPlan
|
|
3256
|
+
"""
|
|
3257
|
+
return pulumi.get(self, "sub_plan")
|
|
3258
|
+
|
|
3259
|
+
@sub_plan.setter
|
|
3260
|
+
def sub_plan(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingSubPlanArgs']]):
|
|
3261
|
+
pulumi.set(self, "sub_plan", value)
|
|
3262
|
+
|
|
3263
|
+
@property
|
|
3264
|
+
@pulumi.getter(name="vaAutoProvisioning")
|
|
3265
|
+
def va_auto_provisioning(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingVaAutoProvisioningArgs']]:
|
|
3266
|
+
"""
|
|
3267
|
+
The Vulnerability Assessment autoprovisioning configuration
|
|
3268
|
+
"""
|
|
3269
|
+
return pulumi.get(self, "va_auto_provisioning")
|
|
3270
|
+
|
|
3271
|
+
@va_auto_provisioning.setter
|
|
3272
|
+
def va_auto_provisioning(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingVaAutoProvisioningArgs']]):
|
|
3273
|
+
pulumi.set(self, "va_auto_provisioning", value)
|
|
3274
|
+
|
|
3275
|
+
@property
|
|
3276
|
+
@pulumi.getter(name="vmScanners")
|
|
3277
|
+
def vm_scanners(self) -> Optional[pulumi.Input['DefenderForServersGcpOfferingVmScannersArgs']]:
|
|
3278
|
+
"""
|
|
3279
|
+
The Microsoft Defender for Server VM scanning configuration
|
|
3280
|
+
"""
|
|
3281
|
+
return pulumi.get(self, "vm_scanners")
|
|
3282
|
+
|
|
3283
|
+
@vm_scanners.setter
|
|
3284
|
+
def vm_scanners(self, value: Optional[pulumi.Input['DefenderForServersGcpOfferingVmScannersArgs']]):
|
|
3285
|
+
pulumi.set(self, "vm_scanners", value)
|
|
3286
|
+
|
|
3287
|
+
|
|
3288
|
+
@pulumi.input_type
|
|
3289
|
+
class GcpOrganizationalDataMemberArgs:
|
|
3290
|
+
def __init__(__self__, *,
|
|
3291
|
+
organization_membership_type: pulumi.Input[str],
|
|
3292
|
+
management_project_number: Optional[pulumi.Input[str]] = None,
|
|
3293
|
+
parent_hierarchy_id: Optional[pulumi.Input[str]] = None):
|
|
3294
|
+
"""
|
|
3295
|
+
The gcpOrganization data for the member account
|
|
3296
|
+
:param pulumi.Input[str] organization_membership_type: The multi cloud account's membership type in the organization
|
|
3297
|
+
Expected value is 'Member'.
|
|
3298
|
+
:param pulumi.Input[str] management_project_number: The GCP management project number from organizational onboarding
|
|
3299
|
+
:param pulumi.Input[str] parent_hierarchy_id: If the multi cloud account is not of membership type organization, this will be the ID of the project's parent
|
|
3300
|
+
"""
|
|
3301
|
+
pulumi.set(__self__, "organization_membership_type", 'Member')
|
|
3302
|
+
if management_project_number is not None:
|
|
3303
|
+
pulumi.set(__self__, "management_project_number", management_project_number)
|
|
3304
|
+
if parent_hierarchy_id is not None:
|
|
3305
|
+
pulumi.set(__self__, "parent_hierarchy_id", parent_hierarchy_id)
|
|
3306
|
+
|
|
3307
|
+
@property
|
|
3308
|
+
@pulumi.getter(name="organizationMembershipType")
|
|
3309
|
+
def organization_membership_type(self) -> pulumi.Input[str]:
|
|
3310
|
+
"""
|
|
3311
|
+
The multi cloud account's membership type in the organization
|
|
3312
|
+
Expected value is 'Member'.
|
|
3313
|
+
"""
|
|
3314
|
+
return pulumi.get(self, "organization_membership_type")
|
|
3315
|
+
|
|
3316
|
+
@organization_membership_type.setter
|
|
3317
|
+
def organization_membership_type(self, value: pulumi.Input[str]):
|
|
3318
|
+
pulumi.set(self, "organization_membership_type", value)
|
|
3319
|
+
|
|
3320
|
+
@property
|
|
3321
|
+
@pulumi.getter(name="managementProjectNumber")
|
|
3322
|
+
def management_project_number(self) -> Optional[pulumi.Input[str]]:
|
|
3323
|
+
"""
|
|
3324
|
+
The GCP management project number from organizational onboarding
|
|
3325
|
+
"""
|
|
3326
|
+
return pulumi.get(self, "management_project_number")
|
|
3327
|
+
|
|
3328
|
+
@management_project_number.setter
|
|
3329
|
+
def management_project_number(self, value: Optional[pulumi.Input[str]]):
|
|
3330
|
+
pulumi.set(self, "management_project_number", value)
|
|
3331
|
+
|
|
3332
|
+
@property
|
|
3333
|
+
@pulumi.getter(name="parentHierarchyId")
|
|
3334
|
+
def parent_hierarchy_id(self) -> Optional[pulumi.Input[str]]:
|
|
3335
|
+
"""
|
|
3336
|
+
If the multi cloud account is not of membership type organization, this will be the ID of the project's parent
|
|
3337
|
+
"""
|
|
3338
|
+
return pulumi.get(self, "parent_hierarchy_id")
|
|
3339
|
+
|
|
3340
|
+
@parent_hierarchy_id.setter
|
|
3341
|
+
def parent_hierarchy_id(self, value: Optional[pulumi.Input[str]]):
|
|
3342
|
+
pulumi.set(self, "parent_hierarchy_id", value)
|
|
3343
|
+
|
|
3344
|
+
|
|
3345
|
+
@pulumi.input_type
|
|
3346
|
+
class GcpOrganizationalDataOrganizationArgs:
|
|
3347
|
+
def __init__(__self__, *,
|
|
3348
|
+
organization_membership_type: pulumi.Input[str],
|
|
3349
|
+
excluded_project_numbers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
3350
|
+
service_account_email_address: Optional[pulumi.Input[str]] = None,
|
|
3351
|
+
workload_identity_provider_id: Optional[pulumi.Input[str]] = None):
|
|
3352
|
+
"""
|
|
3353
|
+
The gcpOrganization data for the parent account
|
|
3354
|
+
:param pulumi.Input[str] organization_membership_type: The multi cloud account's membership type in the organization
|
|
3355
|
+
Expected value is 'Organization'.
|
|
3356
|
+
:param pulumi.Input[Sequence[pulumi.Input[str]]] excluded_project_numbers: If the multi cloud account is of membership type organization, list of accounts excluded from offering
|
|
3357
|
+
:param pulumi.Input[str] service_account_email_address: The service account email address which represents the organization level permissions container.
|
|
3358
|
+
:param pulumi.Input[str] workload_identity_provider_id: The GCP workload identity provider id which represents the permissions required to auto provision security connectors
|
|
3359
|
+
"""
|
|
3360
|
+
pulumi.set(__self__, "organization_membership_type", 'Organization')
|
|
3361
|
+
if excluded_project_numbers is not None:
|
|
3362
|
+
pulumi.set(__self__, "excluded_project_numbers", excluded_project_numbers)
|
|
3363
|
+
if service_account_email_address is not None:
|
|
3364
|
+
pulumi.set(__self__, "service_account_email_address", service_account_email_address)
|
|
3365
|
+
if workload_identity_provider_id is not None:
|
|
3366
|
+
pulumi.set(__self__, "workload_identity_provider_id", workload_identity_provider_id)
|
|
3367
|
+
|
|
3368
|
+
@property
|
|
3369
|
+
@pulumi.getter(name="organizationMembershipType")
|
|
3370
|
+
def organization_membership_type(self) -> pulumi.Input[str]:
|
|
3371
|
+
"""
|
|
3372
|
+
The multi cloud account's membership type in the organization
|
|
3373
|
+
Expected value is 'Organization'.
|
|
3374
|
+
"""
|
|
3375
|
+
return pulumi.get(self, "organization_membership_type")
|
|
3376
|
+
|
|
3377
|
+
@organization_membership_type.setter
|
|
3378
|
+
def organization_membership_type(self, value: pulumi.Input[str]):
|
|
3379
|
+
pulumi.set(self, "organization_membership_type", value)
|
|
3380
|
+
|
|
3381
|
+
@property
|
|
3382
|
+
@pulumi.getter(name="excludedProjectNumbers")
|
|
3383
|
+
def excluded_project_numbers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
3384
|
+
"""
|
|
3385
|
+
If the multi cloud account is of membership type organization, list of accounts excluded from offering
|
|
3386
|
+
"""
|
|
3387
|
+
return pulumi.get(self, "excluded_project_numbers")
|
|
3388
|
+
|
|
3389
|
+
@excluded_project_numbers.setter
|
|
3390
|
+
def excluded_project_numbers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
3391
|
+
pulumi.set(self, "excluded_project_numbers", value)
|
|
3392
|
+
|
|
3393
|
+
@property
|
|
3394
|
+
@pulumi.getter(name="serviceAccountEmailAddress")
|
|
3395
|
+
def service_account_email_address(self) -> Optional[pulumi.Input[str]]:
|
|
3396
|
+
"""
|
|
3397
|
+
The service account email address which represents the organization level permissions container.
|
|
3398
|
+
"""
|
|
3399
|
+
return pulumi.get(self, "service_account_email_address")
|
|
3400
|
+
|
|
3401
|
+
@service_account_email_address.setter
|
|
3402
|
+
def service_account_email_address(self, value: Optional[pulumi.Input[str]]):
|
|
3403
|
+
pulumi.set(self, "service_account_email_address", value)
|
|
3404
|
+
|
|
3405
|
+
@property
|
|
3406
|
+
@pulumi.getter(name="workloadIdentityProviderId")
|
|
3407
|
+
def workload_identity_provider_id(self) -> Optional[pulumi.Input[str]]:
|
|
3408
|
+
"""
|
|
3409
|
+
The GCP workload identity provider id which represents the permissions required to auto provision security connectors
|
|
3410
|
+
"""
|
|
3411
|
+
return pulumi.get(self, "workload_identity_provider_id")
|
|
3412
|
+
|
|
3413
|
+
@workload_identity_provider_id.setter
|
|
3414
|
+
def workload_identity_provider_id(self, value: Optional[pulumi.Input[str]]):
|
|
3415
|
+
pulumi.set(self, "workload_identity_provider_id", value)
|
|
3416
|
+
|
|
3417
|
+
|
|
3418
|
+
@pulumi.input_type
|
|
3419
|
+
class GcpProjectDetailsArgs:
|
|
3420
|
+
def __init__(__self__, *,
|
|
3421
|
+
project_id: Optional[pulumi.Input[str]] = None,
|
|
3422
|
+
project_number: Optional[pulumi.Input[str]] = None):
|
|
3423
|
+
"""
|
|
3424
|
+
The details about the project represented by the security connector
|
|
3425
|
+
:param pulumi.Input[str] project_id: The GCP Project id
|
|
3426
|
+
:param pulumi.Input[str] project_number: The unique GCP Project number
|
|
3427
|
+
"""
|
|
3428
|
+
if project_id is not None:
|
|
3429
|
+
pulumi.set(__self__, "project_id", project_id)
|
|
3430
|
+
if project_number is not None:
|
|
3431
|
+
pulumi.set(__self__, "project_number", project_number)
|
|
3432
|
+
|
|
3433
|
+
@property
|
|
3434
|
+
@pulumi.getter(name="projectId")
|
|
3435
|
+
def project_id(self) -> Optional[pulumi.Input[str]]:
|
|
3436
|
+
"""
|
|
3437
|
+
The GCP Project id
|
|
3438
|
+
"""
|
|
3439
|
+
return pulumi.get(self, "project_id")
|
|
3440
|
+
|
|
3441
|
+
@project_id.setter
|
|
3442
|
+
def project_id(self, value: Optional[pulumi.Input[str]]):
|
|
3443
|
+
pulumi.set(self, "project_id", value)
|
|
3444
|
+
|
|
3445
|
+
@property
|
|
3446
|
+
@pulumi.getter(name="projectNumber")
|
|
3447
|
+
def project_number(self) -> Optional[pulumi.Input[str]]:
|
|
3448
|
+
"""
|
|
3449
|
+
The unique GCP Project number
|
|
3450
|
+
"""
|
|
3451
|
+
return pulumi.get(self, "project_number")
|
|
3452
|
+
|
|
3453
|
+
@project_number.setter
|
|
3454
|
+
def project_number(self, value: Optional[pulumi.Input[str]]):
|
|
3455
|
+
pulumi.set(self, "project_number", value)
|
|
3456
|
+
|
|
3457
|
+
|
|
3458
|
+
@pulumi.input_type
|
|
3459
|
+
class GcpProjectEnvironmentDataArgs:
|
|
3460
|
+
def __init__(__self__, *,
|
|
3461
|
+
environment_type: pulumi.Input[str],
|
|
3462
|
+
organizational_data: Optional[pulumi.Input[Union['GcpOrganizationalDataMemberArgs', 'GcpOrganizationalDataOrganizationArgs']]] = None,
|
|
3463
|
+
project_details: Optional[pulumi.Input['GcpProjectDetailsArgs']] = None,
|
|
3464
|
+
scan_interval: Optional[pulumi.Input[float]] = None):
|
|
3465
|
+
"""
|
|
3466
|
+
The GCP project connector environment data
|
|
3467
|
+
:param pulumi.Input[str] environment_type: The type of the environment data.
|
|
3468
|
+
Expected value is 'GcpProject'.
|
|
3469
|
+
:param pulumi.Input[Union['GcpOrganizationalDataMemberArgs', 'GcpOrganizationalDataOrganizationArgs']] organizational_data: The Gcp project's organizational data
|
|
3470
|
+
:param pulumi.Input['GcpProjectDetailsArgs'] project_details: The Gcp project's details
|
|
3471
|
+
:param pulumi.Input[float] scan_interval: Scan interval in hours (value should be between 1-hour to 24-hours)
|
|
3472
|
+
"""
|
|
3473
|
+
pulumi.set(__self__, "environment_type", 'GcpProject')
|
|
3474
|
+
if organizational_data is not None:
|
|
3475
|
+
pulumi.set(__self__, "organizational_data", organizational_data)
|
|
3476
|
+
if project_details is not None:
|
|
3477
|
+
pulumi.set(__self__, "project_details", project_details)
|
|
3478
|
+
if scan_interval is not None:
|
|
3479
|
+
pulumi.set(__self__, "scan_interval", scan_interval)
|
|
3480
|
+
|
|
3481
|
+
@property
|
|
3482
|
+
@pulumi.getter(name="environmentType")
|
|
3483
|
+
def environment_type(self) -> pulumi.Input[str]:
|
|
3484
|
+
"""
|
|
3485
|
+
The type of the environment data.
|
|
3486
|
+
Expected value is 'GcpProject'.
|
|
3487
|
+
"""
|
|
3488
|
+
return pulumi.get(self, "environment_type")
|
|
3489
|
+
|
|
3490
|
+
@environment_type.setter
|
|
3491
|
+
def environment_type(self, value: pulumi.Input[str]):
|
|
3492
|
+
pulumi.set(self, "environment_type", value)
|
|
3493
|
+
|
|
3494
|
+
@property
|
|
3495
|
+
@pulumi.getter(name="organizationalData")
|
|
3496
|
+
def organizational_data(self) -> Optional[pulumi.Input[Union['GcpOrganizationalDataMemberArgs', 'GcpOrganizationalDataOrganizationArgs']]]:
|
|
3497
|
+
"""
|
|
3498
|
+
The Gcp project's organizational data
|
|
3499
|
+
"""
|
|
3500
|
+
return pulumi.get(self, "organizational_data")
|
|
3501
|
+
|
|
3502
|
+
@organizational_data.setter
|
|
3503
|
+
def organizational_data(self, value: Optional[pulumi.Input[Union['GcpOrganizationalDataMemberArgs', 'GcpOrganizationalDataOrganizationArgs']]]):
|
|
3504
|
+
pulumi.set(self, "organizational_data", value)
|
|
3505
|
+
|
|
3506
|
+
@property
|
|
3507
|
+
@pulumi.getter(name="projectDetails")
|
|
3508
|
+
def project_details(self) -> Optional[pulumi.Input['GcpProjectDetailsArgs']]:
|
|
3509
|
+
"""
|
|
3510
|
+
The Gcp project's details
|
|
3511
|
+
"""
|
|
3512
|
+
return pulumi.get(self, "project_details")
|
|
3513
|
+
|
|
3514
|
+
@project_details.setter
|
|
3515
|
+
def project_details(self, value: Optional[pulumi.Input['GcpProjectDetailsArgs']]):
|
|
3516
|
+
pulumi.set(self, "project_details", value)
|
|
3517
|
+
|
|
3518
|
+
@property
|
|
3519
|
+
@pulumi.getter(name="scanInterval")
|
|
3520
|
+
def scan_interval(self) -> Optional[pulumi.Input[float]]:
|
|
3521
|
+
"""
|
|
3522
|
+
Scan interval in hours (value should be between 1-hour to 24-hours)
|
|
3523
|
+
"""
|
|
3524
|
+
return pulumi.get(self, "scan_interval")
|
|
3525
|
+
|
|
3526
|
+
@scan_interval.setter
|
|
3527
|
+
def scan_interval(self, value: Optional[pulumi.Input[float]]):
|
|
3528
|
+
pulumi.set(self, "scan_interval", value)
|
|
3529
|
+
|
|
3530
|
+
|
|
3531
|
+
@pulumi.input_type
|
|
3532
|
+
class GithubScopeEnvironmentDataArgs:
|
|
3533
|
+
def __init__(__self__, *,
|
|
3534
|
+
environment_type: pulumi.Input[str]):
|
|
3535
|
+
"""
|
|
3536
|
+
The github scope connector's environment data
|
|
3537
|
+
:param pulumi.Input[str] environment_type: The type of the environment data.
|
|
3538
|
+
Expected value is 'GithubScope'.
|
|
3539
|
+
"""
|
|
3540
|
+
pulumi.set(__self__, "environment_type", 'GithubScope')
|
|
3541
|
+
|
|
3542
|
+
@property
|
|
3543
|
+
@pulumi.getter(name="environmentType")
|
|
3544
|
+
def environment_type(self) -> pulumi.Input[str]:
|
|
3545
|
+
"""
|
|
3546
|
+
The type of the environment data.
|
|
3547
|
+
Expected value is 'GithubScope'.
|
|
3548
|
+
"""
|
|
3549
|
+
return pulumi.get(self, "environment_type")
|
|
3550
|
+
|
|
3551
|
+
@environment_type.setter
|
|
3552
|
+
def environment_type(self, value: pulumi.Input[str]):
|
|
3553
|
+
pulumi.set(self, "environment_type", value)
|
|
3554
|
+
|
|
3555
|
+
|
|
3556
|
+
@pulumi.input_type
|
|
3557
|
+
class GitlabScopeEnvironmentDataArgs:
|
|
3558
|
+
def __init__(__self__, *,
|
|
3559
|
+
environment_type: pulumi.Input[str]):
|
|
3560
|
+
"""
|
|
3561
|
+
The GitLab scope connector's environment data
|
|
3562
|
+
:param pulumi.Input[str] environment_type: The type of the environment data.
|
|
3563
|
+
Expected value is 'GitlabScope'.
|
|
3564
|
+
"""
|
|
3565
|
+
pulumi.set(__self__, "environment_type", 'GitlabScope')
|
|
3566
|
+
|
|
3567
|
+
@property
|
|
3568
|
+
@pulumi.getter(name="environmentType")
|
|
3569
|
+
def environment_type(self) -> pulumi.Input[str]:
|
|
3570
|
+
"""
|
|
3571
|
+
The type of the environment data.
|
|
3572
|
+
Expected value is 'GitlabScope'.
|
|
3573
|
+
"""
|
|
3574
|
+
return pulumi.get(self, "environment_type")
|
|
3575
|
+
|
|
3576
|
+
@environment_type.setter
|
|
3577
|
+
def environment_type(self, value: pulumi.Input[str]):
|
|
3578
|
+
pulumi.set(self, "environment_type", value)
|
|
3579
|
+
|
|
3580
|
+
|
|
3581
|
+
@pulumi.input_type
|
|
3582
|
+
class VmScannersBaseConfigurationArgs:
|
|
3583
|
+
def __init__(__self__, *,
|
|
3584
|
+
exclusion_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
3585
|
+
scanning_mode: Optional[pulumi.Input[Union[str, 'ScanningMode']]] = None):
|
|
3586
|
+
"""
|
|
3587
|
+
Configuration for VM scanning
|
|
3588
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] exclusion_tags: Tags that indicates that a resource should not be scanned
|
|
3589
|
+
:param pulumi.Input[Union[str, 'ScanningMode']] scanning_mode: The scanning mode for the VM scan.
|
|
3590
|
+
"""
|
|
3591
|
+
if exclusion_tags is not None:
|
|
3592
|
+
pulumi.set(__self__, "exclusion_tags", exclusion_tags)
|
|
3593
|
+
if scanning_mode is not None:
|
|
3594
|
+
pulumi.set(__self__, "scanning_mode", scanning_mode)
|
|
3595
|
+
|
|
3596
|
+
@property
|
|
3597
|
+
@pulumi.getter(name="exclusionTags")
|
|
3598
|
+
def exclusion_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
|
3599
|
+
"""
|
|
3600
|
+
Tags that indicates that a resource should not be scanned
|
|
3601
|
+
"""
|
|
3602
|
+
return pulumi.get(self, "exclusion_tags")
|
|
3603
|
+
|
|
3604
|
+
@exclusion_tags.setter
|
|
3605
|
+
def exclusion_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
|
3606
|
+
pulumi.set(self, "exclusion_tags", value)
|
|
3607
|
+
|
|
3608
|
+
@property
|
|
3609
|
+
@pulumi.getter(name="scanningMode")
|
|
3610
|
+
def scanning_mode(self) -> Optional[pulumi.Input[Union[str, 'ScanningMode']]]:
|
|
3611
|
+
"""
|
|
3612
|
+
The scanning mode for the VM scan.
|
|
3613
|
+
"""
|
|
3614
|
+
return pulumi.get(self, "scanning_mode")
|
|
3615
|
+
|
|
3616
|
+
@scanning_mode.setter
|
|
3617
|
+
def scanning_mode(self, value: Optional[pulumi.Input[Union[str, 'ScanningMode']]]):
|
|
3618
|
+
pulumi.set(self, "scanning_mode", value)
|
|
3619
|
+
|
|
3620
|
+
|